Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-03-15 CVE-2016-10197 Out-of-bounds Read vulnerability in multiple products
The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.
network
low complexity
debian libevent-project CWE-125
7.5
7.5
2017-03-15 CVE-2016-10195 Out-of-bounds Read vulnerability in multiple products
The name_parse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the label_len variable, which triggers an out-of-bounds stack read.
network
low complexity
libevent-project debian CWE-125
critical
 9.8
9.8
2017-03-15 CVE-2017-6851 Out-of-bounds Read vulnerability in Jasper Project Jasper
The jas_matrix_bindsub function in jas_seq.c in JasPer 2.0.10 allows remote attackers to cause a denial of service (invalid read) via a crafted image.
local
low complexity
jasper-project CWE-125
5.5
5.5
2017-03-15 CVE-2017-6840 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file.
local
low complexity
podofo-project CWE-125
5.5
5.5
2017-03-15 CVE-2017-6437 Out-of-bounds Read vulnerability in Libplist Project Libplist 1.12
The base64encode function in base64.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds read) via a crafted plist file.
local
low complexity
libplist-project CWE-125
5.0
5.0
2017-03-15 CVE-2016-6906 Out-of-bounds Read vulnerability in Libgd
The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file, related to the decompression buffer.
local
low complexity
libgd CWE-125
5.5
5.5
2017-03-14 CVE-2017-6335 Out-of-bounds Read vulnerability in Graphicsmagick
The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a small samples per pixel value in a CMYKA TIFF file.
local
low complexity
graphicsmagick CWE-125
5.5
5.5
2017-03-14 CVE-2016-10172 Out-of-bounds Read vulnerability in Wavpack Project Wavpack
The read_new_config_info function in open_utils.c in Wavpack before 5.1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WV file.
local
low complexity
wavpack-project CWE-125
5.5
5.5
2017-03-14 CVE-2016-10171 Out-of-bounds Read vulnerability in Wavpack Project Wavpack
The unreorder_channels function in cli/wvunpack.c in Wavpack before 5.1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WV file.
local
low complexity
wavpack-project CWE-125
5.5
5.5
2017-03-14 CVE-2016-10170 Out-of-bounds Read vulnerability in Wavpack Project Wavpack
The WriteCaffHeader function in cli/caff.c in Wavpack before 5.1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WV file.
local
low complexity
wavpack-project CWE-125
5.5
5.5