Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
host-based intrusion prevention system vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2006-6952
Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.
Ca Host-based Intrusion Prevention System Core 6.5.4.31
Ca Host-based Intrusion Prevention System Firewall 6.5.4.10
2 EDB exploits
4.3
CVSSv2
CVE-2007-5472
Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) prior to 8.0.0.93 allows remote malicious users to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer.
Broadcom Host-based Intrusion Prevention System
5
CVSSv2
CVE-2009-2740
kmxIds.sys prior to 7.3.1.18 in CA Host-Based Intrusion Prevention System (HIPS) 8.1 allows remote malicious users to cause a denial of service (system crash) via a malformed packet.
Ca Host-based Intrusion Prevention System 8.1
7.2
CVSSv2
CVE-2008-2926
The kmxfw.sys driver in CA Host-Based Intrusion Prevention System (HIPS) r8, as used in CA Internet Security Suite and Personal Firewall, does not properly verify IOCTL requests, which allows local users to cause a denial of service (system crash) or possibly gain privileges via ...
Ca Personal Firewall 2008
Ca Host Based Intrusion Prevention System R8
Broadcom Internet Security Suite 3.0
Ca Internet Security Suite 2008
Ca Personal Firewall 2007
5
CVSSv2
CVE-2008-3174
Unspecified vulnerability in the kmxfw.sys driver in CA Host-Based Intrusion Prevention System (HIPS) r8, as used in CA Internet Security Suite and Personal Firewall, allows remote malicious users to cause a denial of service via unknown vectors, related to "insufficient val...
Computer Associates Personal Firewall 2007
Computer Associates Personal Firewall 2008
Computer Associates Host Based Intrusion Prevention System R8
Computer Associates Internet Security Suite 2007
Computer Associates Internet Security Suite 2008
8.8
CVSSv2
CVE-2011-1036
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server prior to 8.1.0.88, and the client prior to 1.6.450, in CA Host-Based Intrusion Prevention System (HIPS) 8.1, as used in CA Internet Security Suite (ISS) 201...
Ca Host-based Intrusion Prevention System 8.1
Ca Internet Security Suite 2010
Ca Internet Security Suite 2011
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started