Security Vulnerabilities - CVEs Published In March 2017
A buffer overflow vulnerability in Disk Sorter Enterprise 9.5.12 and earlier allows remote attackers to execute arbitrary code via a GET request.
CVSS Score
9.8
EPSS Score
0.656
Published
2017-03-22
pngdefry through 2017-03-22 is prone to a heap-based buffer-overflow vulnerability because it fails to properly process a specially crafted png file. This issue affects the 'process()' function of the 'pngdefry.c' source file.
CVSS Score
7.8
EPSS Score
0.002
Published
2017-03-22
In the Kunena extension 5.0.2 through 5.0.4 for Joomla!, the forum message subject (aka topic subject) accepts JavaScript, leading to XSS. Six files are affected: crypsis/layouts/message/item/default.php, crypsis/layouts/message/item/top/default.php, crypsis/layouts/message/item/bottom/default.php, crypsisb3/layouts/message/item/default.php, crypsisb3/layouts/message/item/top/default.php, and crypsisb3/layouts/message/item/bottom/default.php. This is fixed in 5.0.5.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-03-22
GNU assembler in GNU Binutils 2.28 is vulnerable to a global buffer overflow (of size 1) while attempting to unget an EOF character from the input stream, potentially leading to a program crash.
CVSS Score
7.5
EPSS Score
0.004
Published
2017-03-22
The find_nearest_line function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write (of size 1) while disassembling a corrupt binary that contains an empty function name, leading to a program crash.
CVSS Score
5.5
EPSS Score
0.003
Published
2017-03-22
The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an invalid write, and leading to a program crash.
CVSS Score
7.5
EPSS Score
0.004
Published
2017-03-22
The pe_ILF_object_p function in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a heap-based buffer over-read of size 4049 because it uses the strlen function instead of strnlen, leading to program crashes in several utilities such as addr2line, size, and strings. It could lead to information disclosure as well.
CVSS Score
9.1
EPSS Score
0.004
Published
2017-03-22
GNU linker (ld) in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l.
CVSS Score
7.5
EPSS Score
0.004
Published
2017-03-22
Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file.
CVSS Score
7.8
EPSS Score
0.002
Published
2017-03-22
Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file.
CVSS Score
7.8
EPSS Score
0.003
Published
2017-03-22