CVSS: 8.5EPSS: 4%CPEs: 25EXPL: 0CVE-2015-0307 – Adobe Flash Player AVSegmentedSource::getABRProfileInfoAtIndex Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2015-0307
13 Jan 2015 — Adobe Flash Player anterior a 13.0.0.260 y 14.x a través de 16.x anterior a 16.0.0.257 en Windows y OS X y anterior a 11.2.202.429 en Linux, Adobe AIR anterior a 16.0.0.245 en Windows y OS X y anterior a 16.0.0.272 en Android, Adobe AIR SDK anterior a 16.0.0.272, y Adobe AIR SDK & Compiler anterior a 16.0.0.272 permite a atacantes remotos obtener información sensible de procesos de memoria o causar una denegación de servicio (lectura fuera de rango) a través de vectores sin especificar This vulnerability al... • http://helpx.adobe.com/security/products/flash-player/apsb15-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2014-9162 – Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2014-9162
09 Dec 2014 — This vulnerability allows remote attackers to disclose arbitrary memory on vulnerable installations of Adobe Flash. ... By matching a specially crafted regular expression, it is possible for an attacker to force out-of-bounds reads. • http://helpx.adobe.com/security/products/flash-player/apsb14-27.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 2%CPEs: 47EXPL: 0CVE-2008-5239
https://notcve.org/view.php?id=CVE-2008-5239
26 Nov 2008 — xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not properly handle (a) negative and (b) zero values during unspecified read function calls in input_file.c, input_net.c, input_smb.c, and input_http.c, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via vectors such as (1) a file or (2) an HTTP response, which triggers consequences such as out-of-bounds reads and heap-based buffer overflows. • http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 44%CPEs: 2EXPL: 0CVE-2007-5269 – libpng DoS via multiple out-of-bounds reads
https://notcve.org/view.php?id=CVE-2007-5269
08 Oct 2007 — Certain chunk handlers in libpng before 1.0.29 and 1.2.x before 1.2.21 allow remote attackers to cause a denial of service (crash) via crafted (1) pCAL (png_handle_pCAL), (2) sCAL (png_handle_sCAL), (3) tEXt (png_push_read_tEXt), (4) iTXt (png_handle_iTXt), and (5) ztXT (png_handle_ztXt) chunking in PNG images, which trigger out-of-bounds read operations. • http://android-developers.blogspot.com/2008/03/android-sdk-update-m5-rc15-released.html • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •