Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2017-02-15 CVE-2015-8979 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Stack-based buffer overflow in the parsePresentationContext function in storescp in DICOM dcmtk-3.6.0 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a long string sent to TCP port 4242.
network
low complexity
debian dicom CWE-119
7.5
7.5
2017-02-15 CVE-2017-5991 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Artifex MuPDF before 1912de5f08e90af1d9d0a9791f58ba3afdb9d465.
network
low complexity
artifex debian CWE-476
7.5
7.5
2017-02-15 CVE-2017-2996 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in Primetime SDK.
network
low complexity
adobe CWE-787
8.8
8.8
2017-02-15 CVE-2017-2995 Type Confusion vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion vulnerability related to the MessageChannel class.
network
low complexity
adobe CWE-843
8.8
8.8
2017-02-15 CVE-2017-2994 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in Primetime SDK event dispatch.
network
low complexity
adobe CWE-416
8.8
8.8
2017-02-15 CVE-2017-2993 Use After Free vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability related to event handlers.
network
low complexity
adobe CWE-416
8.8
8.8
2017-02-15 CVE-2017-2992 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability when parsing an MP4 header.
network
low complexity
adobe CWE-787
8.8
8.8
2017-02-15 CVE-2017-2991 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 codec (related to decompression).
network
low complexity
adobe CWE-787
8.8
8.8
2017-02-15 CVE-2017-2990 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 decompression routine.
network
low complexity
adobe CWE-787
8.8
8.8
2017-02-15 CVE-2017-2988 Out-of-bounds Write vulnerability in Adobe Flash Player and Flash Player Desktop Runtime
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability when performing garbage collection.
network
low complexity
adobe CWE-787
8.8
8.8