|
198991
|
5.5 |
MEDIUM
Local
|
graphicsmagick
|
graphicsmagick
|
When GraphicsMagick 1.3.25 processes an RGB TIFF picture (with metadata indicating a single sample per pixel) in coders/tiff.c, a buffer overflow occurs, related to QuantumTransferMode.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10794
|
2024-11-21 12:06 |
2017-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198992
|
6.1 |
MEDIUM
Network
|
intelliants
|
subrion
|
Cross-site scripting (XSS) vulnerability in Subrion CMS 4.1.4 allows remote attackers to inject arbitrary web script or HTML via the body to blog/add/, a different vulnerability than CVE-2017-6069.
|
CWE-79
Cross-site Scripting
|
CVE-2017-10795
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198993
|
6.2 |
MEDIUM
Local
|
antiy
|
antivirus_engine
|
When Antiy Antivirus Engine before 5.0.0.05171547 scans a special ZIP archive, it crashes with a stack-based buffer overflow because a fixed path length is used.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10706
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198994
|
6.5 |
MEDIUM
Network
|
gnu
|
pspp
|
There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-10792
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198995
|
6.5 |
MEDIUM
Network
|
gnu
|
pspp
|
There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SP…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-10791
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198996
|
7.5 |
HIGH
Network
|
gnu
|
libtasn1
|
The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node st…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-10790
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198997
|
5.9 |
MEDIUM
Network
|
dbd-mysql_project
|
dbd-mysql
|
The DBD::mysql module through 4.043 for Perl uses the mysql_ssl=1 setting to mean that SSL is optional (even though this setting's documentation has a "your communication with the server will be encr…
|
NVD-CWE-noinfo
|
CVE-2017-10789
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198998
|
9.8 |
CRITICAL
Network
|
dbd-mysql_project
|
dbd-mysql
|
The DBD::mysql module through 4.043 for Perl allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by triggering (1) ce…
|
CWE-416
Use After Free
|
CVE-2017-10788
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198999
|
6.8 |
MEDIUM
Physics
|
google
|
android
|
The lockscreen on Elephone P9000 devices (running Android 6.0) allows physically proximate attackers to bypass a wrong-PIN lockout feature by pressing backspace after each PIN guess.
|
CWE-287
Improper Authentication
|
CVE-2017-10709
|
2024-11-21 12:06 |
2017-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199000
|
9.8 |
CRITICAL
Network
|
videolan
|
vlc_media_player
|
avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before 2017-06-29, allows out-of-bounds heap memory write due to calling memcpy() with a wrong size, leading to a denial of service (applic…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-10699
|
2024-11-21 12:06 |
2017-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
