Skip to main content
CVE-2016-8706 HIGH POC THREAT Act Now

An integer overflow in process_bin_sasl_auth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 51.8%.

Integer Overflow RCE Memcached
NVD
CVSS 3.0
8.1
EPSS
51.8%
Threat
4.7
CVE-2016-4335 HIGH POC This Week

An exploitable buffer overflow exists in the XLS parsing of the Lexmark Perspective Document Filters conversion functionality. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Perceptive Document Filters
NVD
CVSS 3.0
8.4
EPSS
3.5%
CVE-2016-4288 HIGH POC This Week

A local privilege escalation vulnerability exists in BlueStacks App Player. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Bluestacks
NVD
CVSS 3.0
8.4
EPSS
0.1%
CVE-2016-1548 HIGH POC This Week

An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ntp
NVD
CVSS 3.0
7.2
EPSS
5.4%
CVE-2016-5652 HIGH POC This Week

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Libtiff
NVD
CVSS 3.0
7.0
EPSS
6.4%
CVE-2016-4294 HIGH POC This Week

When opening a Hangul Hcell Document (.cell) and processing a property record within the Workbook stream, Hancom Office 2014 will attempt to allocate space for an element using a length from the. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.8%
CVE-2016-5646 HIGH POC This Week

An exploitable heap overflow vulnerability exists in the Compound Binary File Format (CBFF) parser functionality of Lexmark Perceptive Document Filters library. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Perceptive Document Filters
NVD
CVSS 3.0
7.8
EPSS
0.8%
CVE-2016-4298 HIGH POC This Week

When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a list of elements using a length from the file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2016-4296 HIGH POC This Week

When opening a Hangul Hcell Document (.cell) and processing a record that uses the CSSValFormat object, Hancom Office 2014 will search for an underscore ("_") character at the end of the string and. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2016-4295 HIGH POC This Week

When opening a Hangul Hcell Document (.cell) and processing a particular record within the Workbook stream, an index miscalculation leading to a heap overlow can be made to occur in Hancom Office. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2016-4292 HIGH POC This Week

When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will use a static size to allocate a heap buffer yet explicitly trust a size from the. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2016-4291 HIGH POC This Week

When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will use a field from the structure in an operation that can cause the integer to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2016-4290 HIGH POC This Week

When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a block of data within the file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Microsoft Hancom Office 2014
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2016-2376 HIGH PATCH This Week

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

RCE Buffer Overflow Pidgin Ubuntu Linux Debian Linux
NVD
CVSS 3.0
8.1
EPSS
6.9%
CVE-2016-2368 HIGH PATCH This Week

Multiple memory corruption vulnerabilities exist in the handling of the MXIT protocol in Pidgin. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

RCE Buffer Overflow Pidgin Ubuntu Linux Debian Linux
NVD
CVSS 3.0
8.1
EPSS
6.0%
CVE-2016-9867 HIGH This Week

An issue was discovered in EMC ScaleIO versions before 2.0.1.1. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Privilege Escalation Scaleio
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2016-2371 HIGH PATCH This Week

An out-of-bounds write vulnerability exists in the handling of the MXIT protocol in Pidgin. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Memory Corruption Buffer Overflow RCE Pidgin Ubuntu Linux +1
NVD
CVSS 3.0
8.1
EPSS
3.5%
CVE-2016-2378 HIGH PATCH This Week

A buffer overflow vulnerability exists in the handling of the MXIT protocol Pidgin. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Buffer Overflow Pidgin Ubuntu Linux Debian Linux
NVD
CVSS 3.0
8.1
EPSS
3.3%
CVE-2016-2377 HIGH PATCH This Week

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Buffer Overflow Pidgin Ubuntu Linux Debian Linux
NVD
CVSS 3.0
8.1
EPSS
3.3%
CVE-2016-2374 HIGH PATCH This Week

An exploitable memory corruption vulnerability exists in the handling of the MXIT protocol in Pidgin. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Information Disclosure Buffer Overflow RCE Pidgin Ubuntu Linux +1
NVD
CVSS 3.0
8.1
EPSS
2.8%
CVE-2016-5684 HIGH This Week

An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow RCE Freeimage
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2016-9879 HIGH PATCH This Week

An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Tomcat Authentication Bypass IBM Java Apache +2
NVD
CVSS 3.0
7.5
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy