Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27634 of 28129

CVE-2016-7978

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

Use-after-free vulnerability in Ghostscript 9.20 might allow remote attackers to execute arbitrary code via vectors related to a reference leak in .setdevice.

CVE-2016-10073

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

The from method in library/core/class.email.php in Vanilla Forums before 2.3.1 allows remote attackers to spoof the email domain in sent messages and potentially obtain sensitive information via a crafted HTTP Host header, as...

CVE-2016-7979

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently execute arbitrary code by leveraging type confusion in .initialize_dsc_parser.

CVE-2016-9840

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

CVE-2016-9841

Posted by Cyberthreat Blog | May 22, 2017 | CVE Notifications |

inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

Author: Cyberthreat Blog

CVE-2016-7978

CVE-2016-10073

CVE-2016-7979

CVE-2016-9840

CVE-2016-9841