Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-04-09 CVE-2017-7607 Out-of-bounds Read vulnerability in Elfutils Project Elfutils 0.168
The handle_gnu_hash function in readelf.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.
4.3
2017-04-06 CVE-2017-7454 Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
4.3
2017-04-05 CVE-2014-9829 Out-of-bounds Read vulnerability in Imagemagick
coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-03 CVE-2017-7379 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The PoDoFo::PdfSimpleEncoding::ConvertToEncoding function in PdfEncoding.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document.
4.3
2017-04-03 CVE-2017-7378 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document.
4.3
2017-04-03 CVE-2017-5923 Out-of-bounds Read vulnerability in Virustotal Yara 3.5.0
libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted rule that is mishandled in the yara_yyparse function.
network
low complexity
virustotal CWE-125
5.0
2017-04-03 CVE-2016-10226 Out-of-bounds Read vulnerability in Apple Safari 18
JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 18, allows remote attackers to cause a denial of service (bitfield out-of-bounds read and application crash) via crafted JavaScript code that is mishandled in the operatorString function, related to assembler/MacroAssemblerARM64.h, assembler/MacroAssemblerX86Common.h, and wasm/WasmB3IRGenerator.cpp.
network
low complexity
apple CWE-125
5.0
2017-04-02 CVE-2017-2450 Out-of-bounds Read vulnerability in Apple products
An issue was discovered in certain Apple products.
network
apple CWE-125
5.8
2017-04-02 CVE-2017-2439 Out-of-bounds Read vulnerability in Apple products
An issue was discovered in certain Apple products.
network
apple CWE-125
5.8
2017-04-02 CVE-2017-2409 Out-of-bounds Read vulnerability in Apple mac OS X
An issue was discovered in certain Apple products.
network
apple CWE-125
5.8