Shodan
Vulnerabilities
Vulnerable Software
Gnu:  Security Vulnerabilities
CVE-2017-13728
There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack.
CVSS Score
7.5
EPSS Score
0.001
Published
2017-08-29
CVE-2017-13729
There is an illegal address access in the _nc_save_str function in alloc_entry.c in ncurses 6.0. It will lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.001
Published
2017-08-29
CVE-2017-13730
There is an illegal address access in the function _nc_read_entry_source() in progs/tic.c in ncurses 6.0 that might lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-08-29
CVE-2017-13731
There is an illegal address access in the function postprocess_termcap() in parse_entry.c in ncurses 6.0 that will lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.001
Published
2017-08-29
CVE-2017-13732
There is an illegal address access in the function dump_uses() in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-08-29
CVE-2017-13733
There is an illegal address access in the fmt_entry function in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-08-29
CVE-2017-13734
There is an illegal address access in the _nc_safe_strcat function in strings.c in ncurses 6.0 that will lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-29
CVE-2017-13716
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a crafted file, as demonstrated by a call from the Binary File Descriptor (BFD) library (aka libbfd).
CVSS Score
5.5
EPSS Score
0.002
Published
2017-08-28
CVE-2016-0634
The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute arbitrary code via shell metacharacters placed in 'hostname' of a machine.
CVSS Score
7.5
EPSS Score
0.031
Published
2017-08-28
CVE-2014-9483
Emacs 24.4 allows remote attackers to bypass security restrictions.
CVSS Score
7.5
EPSS Score
0.002
Published
2017-08-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved