Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In March 2017
CVE-2016-10132
regexp.c in Artifex Software, Inc. MuJS allows attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to regular expression compilation.
CVSS Score
7.5
EPSS Score
0.005
Published
2017-03-24
CVE-2016-10133
Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc. MuJS allows attackers to have unspecified impact by leveraging an error when dropping extra arguments to lightweight functions.
CVSS Score
9.8
EPSS Score
0.006
Published
2017-03-24
CVE-2016-10144
coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
CVSS Score
9.8
EPSS Score
0.008
Published
2017-03-24
CVE-2016-10145
Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
CVSS Score
9.8
EPSS Score
0.007
Published
2017-03-24
CVE-2016-10146
Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
CVSS Score
7.5
EPSS Score
0.026
Published
2017-03-24
CVE-2016-2224
The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.
CVSS Score
7.5
EPSS Score
0.009
Published
2017-03-24
CVE-2016-2225
The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.
CVSS Score
7.5
EPSS Score
0.009
Published
2017-03-24
CVE-2016-3178
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (out-of-bounds memory access and daemon crash) via vectors involving a negative length value.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-03-24
CVE-2016-3179
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (invalid free and daemon crash) via vectors related to error handling.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-03-24
CVE-2016-6206
Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet.
CVSS Score
9.8
EPSS Score
0.014
Published
2017-03-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved