CVE-2018-7182
- EPSS 29.32%
- Veröffentlicht 06.03.2018 20:29:01
- Zuletzt bearbeitet 21.11.2024 04:11:44
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
CVE-2018-7184
- EPSS 8.69%
- Veröffentlicht 06.03.2018 20:29:01
- Zuletzt bearbeitet 14.01.2025 19:29:55
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset ...
CVE-2018-7185
- EPSS 9.06%
- Veröffentlicht 06.03.2018 20:29:01
- Zuletzt bearbeitet 14.01.2025 19:29:55
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association ...
CVE-2018-7728
- EPSS 1.35%
- Veröffentlicht 06.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:37
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.
CVE-2018-7729
- EPSS 1.25%
- Veröffentlicht 06.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:37
An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp.
CVE-2018-7730
- EPSS 1.43%
- Veröffentlicht 06.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:37
An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.
CVE-2018-7731
- EPSS 1.3%
- Veröffentlicht 06.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:37
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class.
CVE-2018-1000100
- EPSS 1.11%
- Veröffentlicht 06.03.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:38
GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker su...
CVE-2018-7725
- EPSS 1.72%
- Veröffentlicht 06.03.2018 17:29:00
- Zuletzt bearbeitet 10.07.2025 15:44:54
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.
CVE-2018-7726
- EPSS 1.72%
- Veröffentlicht 06.03.2018 17:29:00
- Zuletzt bearbeitet 10.07.2025 15:44:54
An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the __zzip_parse_root_directory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.