Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qflb.wu vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-9129
The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote malicious users to cause a denial of service (large loop) via a crafted wav file.
Audiocoding Freeware Advanced Audio Coder 1.28
1 EDB exploit
4.3
CVSSv2
CVE-2017-9130
The faacEncOpen function in libfaac/frame.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote malicious users to cause a denial of service (invalid memory read and application crash) via a crafted wav file.
Freeware Advanced Audio Coder Project Freeware Advanced Audio Coder 1.28
1 EDB exploit
NA
CVE-2017-9410
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-9101. Reason: This candidate is a duplicate of CVE-2015-9101. Notes: All CVE users should reference CVE-2015-9101 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
NA
CVE-2017-9411
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-9100. Reason: This candidate is a duplicate of CVE-2015-9100. Notes: All CVE users should reference CVE-2015-9100 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
4.3
CVSSv2
CVE-2017-9412
The unpack_read_samples function in frontend/get_audio.c in LAME 3.99.5 allows remote malicious users to cause a denial of service (invalid memory read and application crash) via a crafted wav file.
Lame Project Lame 3.99.5
1 EDB exploit
6.8
CVSSv2
CVE-2017-9614
The fill_input_buffer function in jdatasrc.c in libjpeg-turbo 1.5.1 allows remote malicious users to cause a denial of service (invalid memory access and application crash) or possibly have unspecified other impact via a crafted jpg file. NOTE: Maintainer asserts the issue is due...
D.r.commander Libjpeg-turbo 1.5.1
1 EDB exploit
4.3
CVSSv2
CVE-2017-9123
The lqt_frame_duration function in lqt_quicktime.c in libquicktime 1.2.4 allows remote malicious users to cause a denial of service (invalid memory read and application crash) via a crafted mp4 file.
Libquicktime Libquicktime 1.2.4
1 EDB exploit
7.1
CVSSv2
CVE-2017-8871
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote malicious users to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.
Gnome Libcroco 0.6.12
Opensuse Leap 42.3
1 EDB exploit
4.3
CVSSv2
CVE-2017-9125
The lqt_frame_duration function in lqt_quicktime.c in libquicktime 1.2.4 allows remote malicious users to cause a denial of service (heap-based buffer over-read) via a crafted mp4 file.
Libquicktime Libquicktime 1.2.4
1 EDB exploit
4.3
CVSSv2
CVE-2017-9126
The quicktime_read_dref_table function in dref.c in libquicktime 1.2.4 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) via a crafted mp4 file.
Libquicktime Libquicktime 1.2.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »