CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Related To CWE-369

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2017-15266 369 2017-10-11 2017-10-25
4.3
None Remote Medium Not required None None Partial
In GNU Libextractor 1.4, there is a Divide-By-Zero in EXTRACTOR_wav_extract_method in wav_extractor.c via a zero sample rate.
2 CVE-2017-15025 369 DoS 2017-10-04 2017-10-11
4.3
None Remote Medium Not required None None Partial
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted ELF file.
3 CVE-2017-14634 369 2017-09-21 2017-09-27
4.3
None Remote Medium Not required None None Partial
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
4 CVE-2017-14249 369 DoS 2017-09-11 2017-11-12
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.6-8 Q16 mishandles EOF checks in ReadMPCImage in coders/mpc.c, leading to division by zero in GetPixelCacheTileSize in MagickCore/cache.c, allowing remote attackers to cause a denial of service via a crafted file.
5 CVE-2017-14106 369 DoS 2017-09-01 2017-11-05
4.9
None Local Low Not required None None Complete
The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path.
6 CVE-2017-12924 369 DoS 2017-08-28 2017-09-01
4.3
None Remote Medium Not required None None Partial
CDirVector::GetTable in dirfunc.hxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted fpx image.
7 CVE-2017-11720 369 2017-07-28 2017-08-30
7.5
None Remote Low Not required Partial Partial Partial
There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.
8 CVE-2017-11546 369 DoS 2017-07-31 2017-08-03
4.3
None Remote Medium Not required None None Partial
The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mid file. NOTE: a crash might be relevant when using the --background option.
9 CVE-2017-11464 369 2017-07-19 2017-07-27
6.8
None Remote Medium Not required Partial Partial Partial
A SIGFPE is raised in the function box_blur_line of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect protection against division by zero.
10 CVE-2017-11359 369 DoS 2017-07-31 2017-08-11
4.3
None Remote Medium Not required None None Partial
The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conversion to a wav file.
11 CVE-2017-11332 369 DoS 2017-07-31 2017-08-11
4.3
None Remote Medium Not required None None Partial
The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted wav file.
12 CVE-2017-9344 369 2017-06-02 2017-07-07
5.0
None Remote Low Not required None None Partial
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value.
13 CVE-2017-9302 369 DoS 2017-05-29 2017-06-08
4.3
None Remote Medium Not required None None Partial
RealPlayer 16.0.2.32 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp4 file.
14 CVE-2017-9239 369 2017-05-26 2017-06-08
4.3
None Remote Medium Not required None None Partial
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.
15 CVE-2017-9202 369 DoS 2017-05-23 2017-05-30
4.3
None Remote Medium Not required None None Partial
imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
16 CVE-2017-9201 369 DoS 2017-05-23 2017-05-30
4.3
None Remote Medium Not required None None Partial
imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
17 CVE-2017-8842 369 DoS 2017-05-08 2017-05-15
4.3
None Remote Medium Not required None None Partial
The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted archive.
18 CVE-2017-7962 369 DoS 2017-04-19 2017-06-30
4.3
None Remote Medium Not required None None Partial
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
19 CVE-2017-7598 369 DoS 2017-04-09 2017-11-03
4.3
None Remote Medium Not required None None Partial
tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.
20 CVE-2017-7595 369 DoS 2017-04-09 2017-11-03
4.3
None Remote Medium Not required None None Partial
The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.
21 CVE-2017-7448 369 DoS 2017-04-05 2017-04-11
4.3
None Remote Medium Not required None None Partial
The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed JPEG image.
22 CVE-2017-6835 369 DoS 2017-03-20 2017-11-03
4.3
None Remote Medium Not required None None Partial
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.
23 CVE-2017-6833 369 DoS 2017-03-20 2017-11-03
4.3
None Remote Medium Not required None None Partial
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.
24 CVE-2017-6271 369 DoS 2017-09-22 2017-09-28
4.9
None Local Low Not required None None Complete
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where untrusted user input is used as a divisor without validation while processing block linear information which may lead to a potential divide by zero and denial of service.
25 CVE-2017-6270 369 DoS 2017-09-22 2017-09-28
4.9
None Local Low Not required None None Complete
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where untrusted user input is used as a divisor without validation during a calculation which may lead to a potential divide by zero and denial of service.
26 CVE-2016-10506 369 DoS 2017-08-30 2017-10-23
4.3
None Remote Medium Not required None None Partial
Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, opj_pi_next_pcrl, and opj_pi_next_rpcl in pi.c in OpenJPEG before 2.2.0 allow remote attackers to cause a denial of service (application crash) via crafted j2k files.
27 CVE-2016-10267 369 DoS 2017-03-24 2017-11-03
4.3
None Remote Medium Not required None None Partial
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.
28 CVE-2016-10266 369 DoS 2017-03-24 2017-11-03
4.3
None Remote Medium Not required None None Partial
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_read.c:351:22.
29 CVE-2016-10219 369 DoS 2017-04-03 2017-11-03
4.3
None Remote Medium Not required None None Partial
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
30 CVE-2016-10053 369 DoS 2017-03-23 2017-03-24
4.3
None Remote Medium Not required None None Partial
The WriteTIFFImage function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
31 CVE-2016-9960 369 DoS 2017-06-06 2017-07-10
2.1
None Local Low Not required None None Partial
game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).
32 CVE-2016-9922 369 DoS 2017-03-27 2017-03-31
2.1
None Local Low Not required None None Partial
The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.
33 CVE-2016-9921 369 2016-12-23 2017-06-30
2.1
None Local Low Not required None None Partial
Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. It could occur while copying VGA data when cirrus graphics mode was set to be VGA. A privileged user inside guest could use this flaw to crash the Qemu process instance on the host, resulting in DoS.
34 CVE-2016-9265 369 DoS 2017-03-23 2017-03-27
4.3
None Remote Medium Not required None None Partial
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
35 CVE-2016-9112 369 2016-10-29 2017-10-23
5.0
None Remote Low Not required None None Partial
Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2.
36 CVE-2016-8697 369 DoS 2017-01-31 2017-02-05
4.3
None Remote Medium Not required None None Partial
The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted BMP image.
37 CVE-2016-8692 369 DoS 2017-02-15 2017-02-22
4.3
None Remote Medium Not required None None Partial
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted YRsiz value in a BMP image to the imginfo command.
38 CVE-2016-8691 369 DoS 2017-02-15 2017-02-22
4.3
None Remote Medium Not required None None Partial
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted XRsiz value in a BMP image to the imginfo command.
39 CVE-2016-8669 369 DoS 2016-11-04 2017-06-30
1.9
None Local Medium Not required None None Partial
The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater than baud base.
40 CVE-2016-8667 369 DoS 2016-11-04 2017-01-06
1.9
None Local Medium Not required None None Partial
The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via a large interval timer reload value.
41 CVE-2016-7530 369 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
42 CVE-2016-7499 369 DoS 2017-02-15 2017-02-17
4.3
None Remote Medium Not required None None Partial
The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
43 CVE-2016-6505 369 DoS 2016-08-06 2017-09-02
4.3
None Remote Medium Not required None None Partial
epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted packet.
44 CVE-2016-5323 369 DoS 2017-01-20 2017-11-03
5.0
None Remote Low Not required None None Partial
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
45 CVE-2016-4797 369 DoS 2017-02-03 2017-02-07
4.3
None Remote Medium Not required None None Partial
Divide-by-zero vulnerability in the opj_tcd_init_tile function in tcd.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (application crash) via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947.
46 CVE-2016-3623 369 DoS 2016-10-03 2017-11-03
5.0
None Remote Low Not required None None Partial
The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero) by setting the (1) v or (2) h parameter to 0.
47 CVE-2016-3622 369 DoS 2016-10-03 2017-11-03
4.3
None Remote Medium Not required None None Partial
The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.
48 CVE-2015-3418 369 DoS 2016-12-13 2017-06-30
5.0
None Remote Low Not required None None Partial
The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.
49 CVE-2014-0142 369 DoS 2017-08-10 2017-11-03
2.1
None Local Low Not required None None Partial
QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero error and crash) via a zero value in the (1) tracks field to the seek_to_sector function in block/parallels.c or (2) extent_size field in the bochs function in block/bochs.c.
50 CVE-2006-5939 369 DoS 2006-11-15 2017-07-19
7.8
None Remote Low Not required None None Complete
Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers a divide-by-zero error. NOTE: some of these details are obtained from third party information.
Total number of vulnerabilities : 50   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.