Oracle

Solaris

546 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2016-2334

Exploit
  • EPSS 16.3%
  • Veröffentlicht 13.12.2016 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image.

8.8

CVE-2016-6491

Exploit
  • EPSS 1.19%
  • Veröffentlicht 13.12.2016 15:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in the Get8BIMProperty function in MagickCore/property.c in ImageMagick before 6.9.5-4 and 7.x before 7.0.2-6 allows remote attackers to cause a denial of service (out-of-bounds read, memory leak, and crash) via a crafted image.

7.5

CVE-2016-5842

Exploit
  • EPSS 1.13%
  • Veröffentlicht 13.12.2016 15:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

MagickCore/property.c in ImageMagick before 7.0.2-1 allows remote attackers to obtain sensitive memory information via vectors involving the q variable, which triggers an out-of-bounds read.

9.8

CVE-2016-5841

Exploit
  • EPSS 22.99%
  • Veröffentlicht 13.12.2016 15:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable.

9.8

CVE-2016-5691

Exploit
  • EPSS 1.33%
  • Veröffentlicht 13.12.2016 15:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixel.blue.

9.8

CVE-2016-5690

Exploit
  • EPSS 1.54%
  • Veröffentlicht 13.12.2016 15:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.

9.8

CVE-2016-5689

Exploit
  • EPSS 1.07%
  • Veröffentlicht 13.12.2016 15:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks.

8.1

CVE-2016-5688

  • EPSS 2.39%
  • Veröffentlicht 13.12.2016 15:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer ov...

9.8

CVE-2016-5687

  • EPSS 0.8%
  • Veröffentlicht 13.12.2016 15:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have unspecified impact via a crafted DDS file, which triggers an out-of-bounds read.

6.8

CVE-2015-8786

  • EPSS 0.88%
  • Veröffentlicht 09.12.2016 20:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (resource consumption) via the (1) lengths_age or (2) lengths_incr parameter.