Vulnerabilities > Integer Overflow or Wraparound

DATE CVE VULNERABILITY TITLE RISK
2017-01-12 CVE-2016-8438 Integer Overflow or Wraparound vulnerability in Linux Kernel 3.18
Integer overflow leading to a TOCTOU condition in hypervisor PIL.
network
low complexity
linux CWE-190
critical
9.8
2017-01-11 CVE-2017-5340 Integer Overflow or Wraparound vulnerability in multiple products
Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that require large array allocations, which allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow, uninitialized memory access, and use of arbitrary destructor function pointers) via crafted serialized data.
network
low complexity
php netapp CWE-190
critical
9.8
2017-01-06 CVE-2016-8706 Integer Overflow or Wraparound vulnerability in Memcached
An integer overflow in process_bin_sasl_auth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
network
high complexity
memcached CWE-190
8.1
2017-01-06 CVE-2016-8705 Integer Overflow or Wraparound vulnerability in Memcached
Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
network
low complexity
memcached CWE-190
critical
9.8
2017-01-06 CVE-2016-8704 Integer Overflow or Wraparound vulnerability in Memcached
An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
network
low complexity
memcached CWE-190
critical
9.8
2017-01-06 CVE-2016-4298 Integer Overflow or Wraparound vulnerability in Hancom Office 2014 9.1.0.2176
When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a list of elements using a length from the file.
local
low complexity
hancom CWE-190
7.8
2017-01-06 CVE-2016-4291 Integer Overflow or Wraparound vulnerability in Hancom Office 2014 9.1.0.2176
When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will use a field from the structure in an operation that can cause the integer to overflow.
local
low complexity
hancom CWE-190
7.8
2017-01-06 CVE-2016-4290 Integer Overflow or Wraparound vulnerability in Hancom Office 2014 9.1.0.2176
When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a block of data within the file.
local
low complexity
hancom CWE-190
7.8
2017-01-06 CVE-2015-7848 Integer Overflow or Wraparound vulnerability in NTP Ntp-Dev 4.3.70
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet.
network
low complexity
ntp CWE-190
7.5
2017-01-05 CVE-2016-9754 Integer Overflow or Wraparound vulnerability in Linux Kernel
The ring_buffer_resize function in kernel/trace/ring_buffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which allows local users to gain privileges by writing to the /sys/kernel/debug/tracing/buffer_size_kb file.
local
low complexity
linux CWE-190
7.8