Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-01-18 CVE-2016-9297 Out-of-bounds Read vulnerability in Libtiff 4.0.6
The TIFFFetchNormalTag function in LibTiff 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted TIFF_SETGET_C16ASCII or TIFF_SETGET_C32_ASCII tag values.
network
low complexity
libtiff CWE-125
7.5
7.5
2017-01-18 CVE-2016-9273 Out-of-bounds Read vulnerability in Libtiff 4.0.6
tiffsplit in libtiff 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file, related to changing td_nstrips in TIFF_STRIPCHOP mode.
local
low complexity
libtiff CWE-125
5.5
5.5
2017-01-18 CVE-2016-9109 Out-of-bounds Read vulnerability in Artifex Mujs
Artifex Software MuJS allows attackers to cause a denial of service (crash) via vectors related to incomplete escape sequences.
network
low complexity
artifex CWE-125
7.5
7.5
2017-01-18 CVE-2016-7799 Out-of-bounds Read vulnerability in multiple products
MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
network
low complexity
imagemagick debian CWE-125
6.5
6.5
2017-01-18 CVE-2016-7563 Out-of-bounds Read vulnerability in Artifex Mujs
The chartorune function in Artifex Software MuJS allows attackers to cause a denial of service (out-of-bounds read) via a * (asterisk) at the end of the input.
network
low complexity
artifex CWE-125
7.5
7.5
2017-01-18 CVE-2016-7101 Out-of-bounds Read vulnerability in Imagemagick
The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large row value in an sgi file.
network
low complexity
imagemagick CWE-125
6.5
6.5
2017-01-13 CVE-2016-9812 Out-of-bounds Read vulnerability in Gstreamer 1.10.1
The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section.
network
low complexity
gstreamer CWE-125
7.5
7.5
2017-01-13 CVE-2016-9811 Out-of-bounds Read vulnerability in multiple products
The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ico file.
local
high complexity
gstreamer fedoraproject debian redhat CWE-125
4.7
4.7
2017-01-13 CVE-2016-9810 Out-of-bounds Read vulnerability in Gstreamer 1.10.1
The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via an invalid file, which triggers an incorrect unref call.
local
low complexity
gstreamer CWE-125
5.5
5.5
2017-01-13 CVE-2016-9809 Out-of-bounds Read vulnerability in Gstreamer 1.10.1
Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read.
local
low complexity
gstreamer CWE-125
7.8
7.8