Search Results | AttackerKB

Show filters

Topics 231 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

231 Total Results

Displaying 31-40 of 231

Attacker Value

Unknown

CVE-2016-9841

Disclosure Date: May 23, 2017 (last updated November 08, 2023)

inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2016-4447

Disclosure Date: June 09, 2016 (last updated November 25, 2024)

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.

0

Attacker Value

Unknown

CVE-2016-4448

Disclosure Date: June 09, 2016 (last updated November 25, 2024)

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2016-1838

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1839

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1840

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1833

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1837

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1836

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.

0

Attacker Value

Unknown

CVE-2016-1834

Disclosure Date: May 20, 2016 (last updated November 25, 2024)

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

0