CVE-2017-5995
The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote attackers to obtain sensitive information via unspecified vectors.
Source: CVE-2017-5995
[월:] 2017년 03월
CVE-2016-9830
CVE-2016-9830
The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote attackers to cause a denial of service (crash) via large dimensions in a jpeg image.
Source: CVE-2016-9830
CVE-2017-2685
CVE-2017-2685
Siemens SINUMERIK Integrate Operate Clients between 2.0.3.00.016 (including) and 2.0.6 (excluding) and between 3.0.4.00.032 (including) and 3.0.6 (excluding) contain a vulnerability that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack.
Source: CVE-2017-2685
CVE-2017-5854 (podofo)
CVE-2017-5854 (podofo)
base/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
Source: CVE-2017-5854 (podofo)
CVE-2017-5855 (podofo)
CVE-2017-5855 (podofo)
The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Source: CVE-2017-5855 (podofo)
CVE-2017-5886 (podofo)
CVE-2017-5886 (podofo)
Heap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken function in PdfTokenizer.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file.
Source: CVE-2017-5886 (podofo)
CVE-2017-5978 (zziplib)
CVE-2017-5978 (zziplib)
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file.
Source: CVE-2017-5978 (zziplib)
CVE-2017-5980 (zziplib)
CVE-2017-5980 (zziplib)
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.
Source: CVE-2017-5980 (zziplib)
CVE-2017-5977 (zziplib)
CVE-2017-5977 (zziplib)
The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file.
Source: CVE-2017-5977 (zziplib)
CVE-2017-5974 (zziplib)
CVE-2017-5974 (zziplib)
Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
Source: CVE-2017-5974 (zziplib)