Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

lan messenger lan messenger vulnerabilities and exploits

(subscribe to this query)
6.4
CVSSv2
CVE-2006-6728
Unspecified vulnerability in the info request mechanism in LAN Messenger prior to 1.5.1.2 allows remote malicious users to cause a denial of service (application crash) or transmit spam via unspecified vectors.
Lan Messenger Lan Messenger
5
CVSSv2
CVE-2012-3845
Buffer overflow in LAN Messenger 1.2.28 and previous versions allows remote malicious users to cause a denial of service (crash) via a long string in an initiation request.
Lan Messenger Lan Messenger1.2.28
5
CVSSv2
CVE-2001-0785
Directory traversal in Webpaging interface in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows allows remote malicious users to read arbitrary files via a .. (dot dot) attack.
Internet Software Solutions Air Messenger Lan Server 3.4.2
5
CVSSv2
CVE-2001-0786
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plaintext in the pUser.Dat file.
Internet Software Solutions Air Messenger Lan Server 3.4.2
5
CVSSv2
CVE-2001-0788
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote malicious users to obtain an absolute path for the server directory by viewing the Location header.
Internet Software Solutions Air Messenger Lan Server 3.4.2
7.2
CVSSv2
CVE-2011-1229
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that triggers a...
Microsoft Windows 2003 Server -Microsoft Windows 7 -Microsoft Windows Server 2003 -Microsoft Windows Server 2008 -Microsoft Windows Server 2008 R2Microsoft Windows Vista -Microsoft Windows Xp -Avaya Agent AccessAvaya Aura Conferencing Standard Edition 6.0.0Avaya Basic Call Management System Reporting DesktopAvaya Call Management Server SupervisorAvaya CallpilotAvaya Callvisor Asai LanAvaya Communication Server 1000 Telephony ManagerAvaya Computer TelephonyAvaya Contact Center ExpressAvaya Customer Interaction ExpressAvaya Enterprise ManagerAvaya Integrated ManagementAvaya Interaction CenterAvaya Ip AgentAvaya Ip Softphone
NA
CVE-2024-4599
Remote denial of service vulnerability in LAN Messenger affecting version 3.4.0. This vulnerability allows an malicious user to crash the LAN Messenger service by sending a long string directly and continuously over the UDP protocol.
4.3
CVSSv2
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl OpensslOpenssl Openssl 1.0.1mOpenssl Openssl 1.0.2aOpenssl Openssl 1.0.1jOpenssl Openssl 1.0.0nOpenssl Openssl 1.0.1Openssl Openssl 1.0.0cOpenssl Openssl 1.0.0iOpenssl Openssl 1.0.0Openssl Openssl 1.0.1hOpenssl Openssl 1.0.0mOpenssl Openssl 1.0.1cOpenssl Openssl 1.0.1gOpenssl Openssl 1.0.0hOpenssl Openssl 1.0.0eOpenssl Openssl 1.0.0fOpenssl Openssl 1.0.0dOpenssl Openssl 1.0.0jOpenssl Openssl 1.0.0pOpenssl Openssl 1.0.1aOpenssl Openssl 1.0.0oOpenssl Openssl 1.0.1d
5
CVSSv2
CVE-2016-2180
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1mOpenssl Openssl 1.0.2aOpenssl Openssl 1.0.1jOpenssl Openssl 1.0.1hOpenssl Openssl 1.0.2eOpenssl Openssl 1.0.1rOpenssl Openssl 1.0.2bOpenssl Openssl 1.0.1cOpenssl Openssl 1.0.1gOpenssl Openssl 1.0.2gOpenssl Openssl 1.0.1aOpenssl Openssl 1.0.2hOpenssl Openssl 1.0.1dOpenssl Openssl 1.0.1tOpenssl Openssl 1.0.2cOpenssl Openssl 1.0.1pOpenssl Openssl 1.0.1kOpenssl Openssl 1.0.1bOpenssl Openssl 1.0.1nOpenssl Openssl 1.0.1qOpenssl Openssl 1.0.1eOpenssl Openssl 1.0.1l
5
CVSSv2
CVE-2015-1794
The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.
Openssl Openssl 1.0.2aOpenssl Openssl 1.0.2bOpenssl Openssl 1.0.2cOpenssl Openssl 1.0.2Openssl Openssl 1.0.2d
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30043cameraCVE-2023-40404CVE-2024-2793client sideCVE-2024-4469CVE-2024-3565CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook