Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2017-08-18 CVE-2017-12944 Allocation of Resources Without Limits or Throttling vulnerability in Libtiff 4.0.8
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation for short files, which allows remote attackers to cause a denial of service (allocation failure and application crash) in the TIFFFetchStripThing function in tif_dirread.c during a tiff2pdf invocation.
network
low complexity
libtiff CWE-770
7.5
2017-08-09 CVE-2017-0725 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
A denial of service vulnerability in the Android media framework (libskia).
local
low complexity
google CWE-770
5.5
2017-08-07 CVE-2017-12643 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c.
network
low complexity
imagemagick debian CWE-770
6.5
2017-08-05 CVE-2017-12563 Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.62
In ImageMagick 7.0.6-2, a memory exhaustion vulnerability was found in the function ReadPSDImage in coders/psd.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-770
6.5
2017-08-04 CVE-2017-12435 Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.61
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-770
7.5
2017-08-04 CVE-2017-12432 Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.61
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage in coders/pcx.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-770
6.5
2017-08-04 CVE-2017-12430 Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.61
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-770
7.5
2017-08-04 CVE-2017-12429 Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.61
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-770
7.5
2017-08-02 CVE-2017-12144 Allocation of Resources Without Limits or Throttling vulnerability in Ytnef Project Ytnef 1.9.2
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file.
local
low complexity
ytnef-project CWE-770
5.5
2017-08-01 CVE-2017-12132 Allocation of Resources Without Limits or Throttling vulnerability in GNU Glibc
The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path DNS spoofing attacks due to IP fragmentation.
network
high complexity
gnu CWE-770
5.9