Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-02-09 CVE-2017-5848 Out-of-bounds Read vulnerability in multiple products
The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.
network
low complexity
gstreamer-project debian redhat CWE-125
5.0
2017-02-09 CVE-2017-5847 Out-of-bounds Read vulnerability in multiple products
The gst_asf_demux_process_ext_content_desc function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving extended content descriptors.
network
low complexity
gstreamer-project debian CWE-125
5.0
2017-02-09 CVE-2017-5846 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The gst_asf_demux_process_ext_stream_props function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors related to the number of languages in a video file.
4.3
2017-02-09 CVE-2017-5845 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a ncdt sub-tag that "goes behind" the surrounding tag.
network
low complexity
gstreamer-project CWE-125
5.0
2017-02-09 CVE-2017-5841 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The gst_avi_demux_parse_ncdt function in gst/avi/gstavidemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving ncdt tags.
network
low complexity
gstreamer-project CWE-125
5.0
2017-02-09 CVE-2017-5840 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The qtdemux_parse_samples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via vectors involving the current stts index.
network
low complexity
gstreamer-project CWE-125
5.0
2017-02-09 CVE-2017-5838 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The gst_date_time_new_from_iso8601_string function in gst/gstdatetime.c in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a malformed datetime string.
network
low complexity
gstreamer-project CWE-125
5.0
2017-02-09 CVE-2016-10199 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.
network
low complexity
gstreamer-project CWE-125
5.0
2017-02-09 CVE-2016-10198 Out-of-bounds Read vulnerability in Gstreamer Project Gstreamer
The gst_aac_parse_sink_setcaps function in gst/audioparsers/gstaacparse.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted audio file.
4.3
2017-02-07 CVE-2015-8608 Out-of-bounds Read vulnerability in Perl 5.22
The VDir::MapPathA and VDir::MapPathW functions in Perl 5.22 allow remote attackers to cause a denial of service (out-of-bounds read) and possibly execute arbitrary code via a crafted (1) drive letter or (2) pInName argument.
network
low complexity
perl CWE-125
7.5