Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-09-18 CVE-2017-14529 Out-of-bounds Read vulnerability in GNU Binutils 2.29
The pe_print_idata function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles HintName vector entries, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PE file, related to the bfd_getl16 function.
local
low complexity
gnu CWE-125
5.5
5.5
2017-09-17 CVE-2017-14503 Out-of-bounds Read vulnerability in Libarchive 3.3.2
libarchive 3.3.2 suffers from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a specially crafted lha archive, related to lha_crc16. 		4.3
4.3
2017-09-17 CVE-2017-14501 Out-of-bounds Read vulnerability in Libarchive 3.3.2
An out-of-bounds read flaw exists in parse_file_info in archive_read_support_format_iso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archive_read_format_iso9660_read_header. 		4.3
4.3
2017-09-14 CVE-2017-13725 Out-of-bounds Read vulnerability in multiple products
The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().
network
low complexity
tcpdump debian CWE-125
7.5
7.5
2017-09-14 CVE-2017-13690 Out-of-bounds Read vulnerability in Tcpdump
The IKEv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions.
network
low complexity
tcpdump CWE-125
7.5
7.5
2017-09-14 CVE-2017-13689 Out-of-bounds Read vulnerability in Tcpdump
The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1_id_print().
network
low complexity
tcpdump CWE-125
7.5
7.5
2017-09-14 CVE-2017-13688 Out-of-bounds Read vulnerability in Tcpdump
The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print().
network
low complexity
tcpdump CWE-125
7.5
7.5
2017-09-14 CVE-2017-13687 Out-of-bounds Read vulnerability in multiple products
The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print().
network
low complexity
tcpdump debian CWE-125
7.5
7.5
2017-09-14 CVE-2017-13055 Out-of-bounds Read vulnerability in Tcpdump
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv().
network
low complexity
tcpdump CWE-125
7.5
7.5
2017-09-14 CVE-2017-13054 Out-of-bounds Read vulnerability in Tcpdump
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print().
network
low complexity
tcpdump CWE-125
7.5
7.5