Total
11483 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2016-7985 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print(). | |||||
| CVE-2016-7986 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions. | |||||
| CVE-2016-7983 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print(). | |||||
| CVE-2016-7984 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print(). | |||||
| CVE-2017-5341 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print(). | |||||
| CVE-2016-7992 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print(). | |||||
| CVE-2016-7932 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The PIM parser in tcpdump before 4.9.0 has a buffer overflow in print-pim.c:pimv2_check_checksum(). | |||||
| CVE-2017-3079 | 5 Adobe, Apple, Google and 2 more | 7 Flash Player, Mac Os X, Chrome Os and 4 more | 2018-01-04 | 10.0 HIGH | 9.8 CRITICAL |
| Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the internal representation of raster data. Successful exploitation could lead to arbitrary code execution. | |||||
| CVE-2016-9533 | 1 Libtiff | 1 Libtiff | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| tif_pixarlog.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers. Reported as MSVR 35094, aka "PixarLog horizontalDifference heap-buffer-overflow." | |||||
| CVE-2017-5581 | 1 Tigervnc | 1 Tigervnc | 2018-01-04 | 6.8 MEDIUM | 9.8 CRITICAL |
| Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries. | |||||
| CVE-2017-5484 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print(). | |||||
| CVE-2016-5652 | 1 Libtiff | 1 Libtiff | 2018-01-04 | 6.8 MEDIUM | 7.0 HIGH |
| An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means. | |||||
| CVE-2016-7042 | 1 Linux | 1 Linux Kernel | 2018-01-04 | 4.9 MEDIUM | 6.2 MEDIUM |
| The proc_keys_show function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection (gcc) stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service (stack memory corruption and panic) by reading the /proc/keys file. | |||||
| CVE-2016-7974 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions. | |||||
| CVE-2016-7933 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The PPP parser in tcpdump before 4.9.0 has a buffer overflow in print-ppp.c:ppp_hdlc_if_print(). | |||||
| CVE-2017-3078 | 5 Adobe, Apple, Google and 2 more | 7 Flash Player, Mac Os X, Chrome Os and 4 more | 2018-01-04 | 10.0 HIGH | 9.8 CRITICAL |
| Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the Adobe Texture Format (ATF) module. Successful exploitation could lead to arbitrary code execution. | |||||
| CVE-2016-7930 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The LLC/SNAP parser in tcpdump before 4.9.0 has a buffer overflow in print-llc.c:llc_print(). | |||||
| CVE-2017-5024 | 1 Google | 1 Chrome | 2018-01-04 | 4.3 MEDIUM | 5.5 MEDIUM |
| FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file. | |||||
| CVE-2016-7928 | 1 Tcpdump | 1 Tcpdump | 2018-01-04 | 7.5 HIGH | 9.8 CRITICAL |
| The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcomp_print(). | |||||
| CVE-2017-3064 | 5 Adobe, Apple, Google and 2 more | 7 Flash Player, Mac Os X, Chrome Os and 4 more | 2018-01-04 | 9.3 HIGH | 7.8 HIGH |
| Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability when parsing a shape outline. Successful exploitation could lead to arbitrary code execution. | |||||