Vulnerabilities > Access of Uninitialized Pointer

DATE CVE VULNERABILITY TITLE RISK
2017-06-15 CVE-2017-9670 Access of Uninitialized Pointer vulnerability in Gnuplot Project Gnuplot 5.2
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact when a victim opens a specially crafted file.
local
low complexity
gnuplot-project CWE-824
7.8
2016-05-22 CVE-2016-4343 Access of Uninitialized Pointer vulnerability in multiple products
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size ././@LongLink files, which allows remote attackers to cause a denial of service (uninitialized pointer dereference) or possibly have unspecified other impact via a crafted TAR archive.
network
low complexity
php opensuse CWE-824
8.8
2016-03-12 CVE-2016-1005 Access of Uninitialized Pointer vulnerability in multiple products
Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allow attackers to execute arbitrary code or cause a denial of service (uninitialized pointer dereference and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0986, CVE-2016-0989, CVE-2016-0992, and CVE-2016-1002.
network
low complexity
adobe samsung CWE-824
8.8
2015-06-10 CVE-2015-1770 Access of Uninitialized Pointer vulnerability in Microsoft Office 2013
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Uninitialized Memory Use Vulnerability."
network
low complexity
microsoft CWE-824
8.8