CVE-2015-1207
- EPSS 0.84%
- Veröffentlicht 06.06.2017 18:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Double-free vulnerability in libavformat/mov.c in FFMPEG in Google Chrome 41.0.2251.0 allows remote attackers to cause a denial of service (memory corruption and crash) via a crafted .m4a file.
CVE-2017-9403
- EPSS 1.25%
- Veröffentlicht 02.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-9404
- EPSS 1.47%
- Veröffentlicht 02.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-9406
- EPSS 1.46%
- Veröffentlicht 02.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-9408
- EPSS 2.39%
- Veröffentlicht 02.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-9344
- EPSS 2.72%
- Veröffentlicht 02.06.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value.
CVE-2017-9349
- EPSS 2.94%
- Veröffentlicht 02.06.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This was addressed in epan/dissectors/packet-dcm.c by validating a length value.
CVE-2017-6512
- EPSS 2.36%
- Veröffentlicht 01.06.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.
CVE-2017-8386
- EPSS 12.39%
- Veröffentlicht 01.06.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before 2.6.7, 2.7.x before 2.7.5, 2.8.x before 2.8.5, 2.9.x before 2.9.4, 2.10.x before 2.10.3, 2.11.x before 2.11.2, and 2.12.x before 2.12.3 might allow remote authenticated users to gain pr...
- EPSS 99.45%
- Veröffentlicht 30.05.2017 18:29:00
- Zuletzt bearbeitet 21.04.2026 19:36:42
Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.