Lucene search
+L

174 matches found

CVE
CVE
added 2018/05/31 12:0 a.m.55 views

CVE-2018-11578

The CVE-2018-11578 entry concerns MiniUPnP ngiflib 0.4, where GifIndexToTrueColor in ngiflib.c is reported to cause a segmentation fault. The description consistently states that a segmentation fault occurs in the GifIndexToTrueColor routine of the ngiflib.c file within MiniUPnP ngiflib 0.4. Mult...

6.5CVSS6.4AI score0.01017EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2018/05/09 12:0 a.m.4 views

MiniUPnP ngiflib Denial of Service Vulnerability

MiniUPnP is a set of UPnP tools developed by MiniUPnP project that can be used in embedded systems. This tool enables devices in home and corporate networks to connect to each other. ngiflib is one of the GIF image format decoding libraries written in C language. A security vulnerability in the...

8.8CVSS7.1AI score0.02019EPSS
Exploits1References1
NVD
NVD
added 2018/05/03 5:29 p.m.20 views

CVE-2018-10717

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted...

8.8CVSS9.2AI score0.02019EPSS
Exploits1References2
Prion
Prion
added 2018/05/03 5:29 p.m.13 views

Heap overflow

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted...

6.8CVSS9.2AI score0.02019EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2018/05/03 5:29 p.m.17 views

CVE-2018-10717

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted...

8.8CVSS9.4AI score
Exploits0References2
CVE
CVE
added 2018/05/03 5:0 p.m.51 views

CVE-2018-10717

CVE-2018-10717 affects MiniUPnP ngiflib 0.4. The DecodeGifImg function in ngiflib.c does not correctly bound the pixels data structure, allowing a remote attacker to trigger a denial of service via a heap-based buffer overflow when processing a crafted GIF file, with the impact described as possi...

8.8CVSS9.1AI score0.02019EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/05/03 5:0 p.m.24 views

CVE-2018-10717

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted...

9.2AI score0.02019EPSS
Exploits1References2
NVD
NVD
added 2018/05/02 7:29 p.m.21 views

CVE-2018-10677

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted GIF file...

8.8CVSS9.2AI score0.01508EPSS
Exploits1References2
OSV
OSV
added 2018/05/02 7:29 p.m.16 views

CVE-2018-10677

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted GIF file...

8.8CVSS9.4AI score
Exploits0References2
CVE
CVE
added 2018/05/02 7:0 p.m.41 views

CVE-2018-10677

Summary: The vulnerability affects MiniUPnP ngiflib 0.4, specifically the DecodeGifImg function in ngiflib.c, which does not correctly validate width/height bounds. This lack of validation can enable a remote attacker to trigger a denial of service via a heap-based WritePixels buffer overflow and...

8.8CVSS9AI score0.01508EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/05/02 7:0 p.m.17 views

CVE-2018-10677

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service WritePixels heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted GIF file...

9.2AI score0.01508EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/02/23 12:0 a.m.36 views

MiniUPnP <= 2.0 DoS Vulnerability (CVE-2017-1000494)

Uninitialized stack variable vulnerability in NameValueParserEndElt upnpreplyparse.c in miniupnpd allows an attacker to cause Denial of Service Segmentation fault and Memory Corruption or possibly have unspecified other impact. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might...

7.8CVSS7.9AI score0.00466EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2018/02/08 12:0 a.m.36 views

Ubuntu 14.04 LTS / 16.04 LTS : MiniUPnP vulnerabilities (USN-3562-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3562-1 advisory. It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute...

7.8CVSS8.1AI score0.00466EPSS
Exploits1References2
OSV
OSV
added 2018/02/07 6:43 p.m.4 views

USN-3562-1 miniupnpc vulnerabilities

It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the user running an application that uses the MiniUPnP library...

7.8CVSS7.3AI score0.00466EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2018/02/07 6:43 p.m.73 views

USN-3562-1: MiniUPnP vulnerabilities

It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the user running an application that uses the MiniUPnP library...

7.8CVSS7.7AI score0.00466EPSS
Exploits1
OSV
OSV
added 2017/08/26 9:17 p.m.5 views

MGASA-2017-0313 Updated miniupnpc packages fix security vulnerability

It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the user running an application that uses the MiniUPnP library CVE-2017-8798...

9.8CVSS9.5AI score0.24027EPSS
Exploits6References3
Mageia
Mageia
added 2017/08/26 9:17 p.m.26 views

Updated miniupnpc packages fix security vulnerability

It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the user running an application that uses the MiniUPnP library CVE-2017-8798...

9.8CVSS3.6AI score0.24027EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2017/05/25 12:0 a.m.42 views

Ubuntu 17.04 : miniupnpc vulnerability (USN-3298-2)

USN-3298-1 fixed a vulnerability in MiniUPnP. This update provides the corresponding update for Ubuntu 17.04. It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the...

9.8CVSS8.4AI score0.24027EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2017/05/25 12:0 a.m.53 views

Ubuntu 14.04 LTS / 16.04 LTS : MiniUPnP vulnerability (USN-3298-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3298-1 advisory. It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute...

9.8CVSS8.8AI score0.24027EPSS
Exploits6References2
Ubuntu
Ubuntu
added 2017/05/24 2:14 p.m.235 views

USN-3298-2: MiniUPnP vulnerability

USN-3298-1 fixed a vulnerability in MiniUPnP. This update provides the corresponding update for Ubuntu 17.04. Original advisory details: It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary co...

9.8CVSS8.7AI score0.24027EPSS
Exploits6
Rows per page
Query Builder