Vulnerabilities > Out-of-bounds Write
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-04 | CVE-2017-12459 | Out-of-bounds Write vulnerability in GNU Binutils The bfd_mach_o_read_symtab_strtab function in bfd/mach-o.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file. | 7.8 |
| 2017-08-04 | CVE-2017-12450 | Out-of-bounds Write vulnerability in GNU Binutils The alpha_vms_object_p function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file. | 7.8 |
| 2017-08-02 | CVE-2017-10806 | Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow in hw/usb/redirect.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU process crash) via vectors related to logging debug messages. | 5.5 |
| 2017-07-31 | CVE-2017-11670 | Out-of-bounds Write vulnerability in Eapmd5Pass Project Eapmd5Pass 1.4 A length validation (leading to out-of-bounds read and write) flaw was found in the way eapmd5pass 1.4 handled network traffic in the extract_eapusername function. | 7.5 |
| 2017-07-31 | CVE-2017-11330 | Out-of-bounds Write vulnerability in Divfix Divfix++ 0.34 The DivFixppCore::avi_header_fix function in DivFix++Core.cpp in DivFix++ v0.34 allows remote attackers to cause a denial of service (invalid memory write and application crash) via a crafted avi file. | 5.5 |
| 2017-07-26 | CVE-2017-11654 | Out-of-bounds Write vulnerability in Sipcrack Project Sipcrack 0.2 An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 processed SIP traffic, because 0x00 termination of a payload array was mishandled. | 5.9 |
| 2017-07-19 | CVE-2017-11465 | Out-of-bounds Write vulnerability in Ruby-Lang Ruby 2.4.1 The parser_yyerror function in the UTF-8 parser in Ruby 2.4.1 allows attackers to cause a denial of service (invalid write or read) or possibly have unspecified other impact via a crafted Ruby script, related to the parser_tokadd_utf8 function in parse.y. | 9.8 |
| 2017-07-17 | CVE-2017-10984 | Out-of-bounds Write vulnerability in Freeradius An FR-GV-301 issue in FreeRADIUS 3.x before 3.0.15 allows "Write overflow in data2vp_wimax()" - this allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code. | 9.8 |
| 2017-07-17 | CVE-2017-10979 | Out-of-bounds Write vulnerability in Freeradius An FR-GV-202 issue in FreeRADIUS 2.x before 2.2.10 allows "Write overflow in rad_coalesce()" - this allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code. | 9.8 |
| 2017-07-17 | CVE-2017-3100 | Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 2 BitmapData class. | 6.5 |