Search Results | AttackerKB

Show filters

Topics 42 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

42 Total Results

Displaying 11-20 of 42

Attacker Value

Unknown

CVE-2016-4448

Disclosure Date: June 09, 2016 (last updated November 25, 2024)

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2016-1838

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1839

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1840

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1833

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1837

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1836

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1834

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1762

Disclosure Date: March 24, 2016 (last updated November 25, 2024)

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1950

Disclosure Date: March 13, 2016 (last updated October 23, 2024)

Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x and 3.21.x before 3.21.1, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code via crafted ASN.1 data in an X.509 certificate.

0