|
268001
|
5.5 |
MEDIUM
Local
|
potrace_project
|
potrace
|
The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8685
|
2024-11-21 11:59 |
2017-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268002
|
9.8 |
CRITICAL
Network
|
tcpdump
|
tcpdump
|
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8575
|
2024-11-21 11:59 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268003
|
9.8 |
CRITICAL
Network
|
tcpdump
|
tcpdump
|
The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8574
|
2024-11-21 11:59 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268004
|
3.7 |
LOW
Network
|
oracle
|
solaris
|
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11.3. Difficult to exploit vulnerability allows unauthent…
|
CWE-284
Improper Access Control
|
CVE-2016-8330
|
2024-11-21 11:59 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268005
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Buffer overflow vulnerability while processing QMI QOS TLVs. Product: Android. Versions: versions that have qmi_qos_srvc.c. Android ID: 31805216. References: QC CR#912775.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8411
|
2024-11-21 11:59 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268006
|
7.8 |
HIGH
Local
|
libbpg_project
|
libbpg
|
An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in Libbpg library. A crafted BPG image decoded by libbpg can cause an integer underflow vulnerability causin…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-8710
|
2024-11-21 11:59 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268007
|
7.8 |
HIGH
Local
|
lenovo
|
transition
|
Privilege escalation vulnerability in Lenovo Transition application used in Lenovo Yoga, Flex and Miix systems running Windows allows local users to execute code with elevated privileges.
|
CWE-284
Improper Access Control
|
CVE-2016-8227
|
2024-11-21 11:59 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268008
|
4.9 |
MEDIUM
Network
|
lenovo
|
system_x3650_m5_bios
flex_system_x280_m6_bios
system_x3500_m5_bios
flex_system_x240_m5_bios
system_x3250_m6_bios
system_x3550_m5_bios
flex_system_x880_x6_bios
nextscale_nx360_m5_…
|
The BIOS in Lenovo System X M5, M6, and X6 systems allows administrators to cause a denial of service via updating a UEFI data structure.
|
CWE-19
Data Processing Errors
|
CVE-2016-8226
|
2024-11-21 11:59 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268009
|
7.8 |
HIGH
Local
|
lenovo
|
edge_keyboard_driver
slim_usb_keyboard_driver
|
Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions earlier than 1.21 allows local users to execute code with elevated privileges.
|
CWE-428
Unquoted Search Path or Element
|
CVE-2016-8225
|
2024-11-21 11:59 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268010
|
6.1 |
MEDIUM
Network
|
emc
|
rsa_security_analytics
|
EMC RSA Security Analytics 10.5.3 and 10.6.2 contains fixes for a Reflected Cross-Site Scripting vulnerability that could potentially be exploited by malicious users to compromise the affected system.
|
CWE-79
Cross-site Scripting
|
CVE-2016-8215
|
2024-11-21 11:59 |
2017-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
