CVE-2017-11359
- EPSS 6.6%
- Veröffentlicht 31.07.2017 13:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conversion to a wav file.
CVE-2017-11332
- EPSS 6.6%
- Veröffentlicht 31.07.2017 13:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted wav file.
CVE-2017-11732
- EPSS 1.09%
- Veröffentlicht 29.07.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-11733
- EPSS 0.98%
- Veröffentlicht 29.07.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-11714
- EPSS 2.3%
- Veröffentlicht 28.07.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document,...
CVE-2016-8743
- EPSS 13.25%
- Veröffentlicht 27.07.2017 21:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in...
CVE-2017-11683
- EPSS 2.66%
- Veröffentlicht 27.07.2017 06:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input.
CVE-2017-9611
- EPSS 1.95%
- Veröffentlicht 26.07.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Ins_MIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.
CVE-2017-9612
- EPSS 2.46%
- Veröffentlicht 26.07.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Ins_IP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via a crafted document.
CVE-2017-9726
- EPSS 2.75%
- Veröffentlicht 26.07.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Ins_MDRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.