Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
matteo memelli vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-41910
An issue exists in lldpd prior to 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.
Lldpd Project Lldpd
NA
CVE-2011-2005
afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation ...
Microsoft Windows Xp -
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Server 2003
2 EDB exploits
1 Article
NA
CVE-2007-6681
Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.
Videolan Vlc
1 EDB exploit
NA
CVE-2007-3901
Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft DirectX 7.0 up to and including 10.0 allows remote malicious users to execute arbitrary code via a crafted SAMI file.
Microsoft Directx 5.2
Microsoft Directx 6.1
Microsoft Directx 8.1b
Microsoft Directx 8.2
Microsoft Directx 10.0
Microsoft Directx 8.1
Microsoft Directx 8.1a
Microsoft Directx 7.1
Microsoft Directx 8.0
Microsoft Directx 8.0a
Microsoft Directx 9.0c
Microsoft Directx 7.0
Microsoft Directx 7.0a
Microsoft Directx 9.0a
Microsoft Directx 9.0b
2 EDB exploits
NA
CVE-2010-3962
Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote malicious users to execute arbitrary code via vectors related to Cascading Style Sheets (CSS) token sequences and the clip attribute, aka an "invalid flag reference" issue or "Uni...
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Microsoft Internet Explorer 8
3 EDB exploits
1 Article
NA
CVE-2008-1625
aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.
Avast Avast Antivirus Home 4.7.1043
Avast Avast Antivirus Home 4.7.1098
Avast Avast Antivirus Home 4.7.827
Avast Avast Antivirus Home 4.7.844
Avast Avast Antivirus Home 4.7.869
Avast Avast Antivirus Professional 4.7.844
Avast Avast Antivirus Professional 4.7.1043
Avast Avast Antivirus Professional 4.7.1098
Avast Avast Antivirus Professional 4.7.827
1 EDB exploit
NA
CVE-2011-2371
Integer overflow in the Array.reduceRight method in Mozilla Firefox prior to 3.6.18 and 4.x up to and including 4.0.1, Thunderbird prior to 3.1.11, and SeaMonkey up to and including 2.0.14 allows remote malicious users to execute arbitrary code via vectors involving a long JavaSc...
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.13
Mozilla Seamonkey 1.1.14
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey 1.1.4
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.5.0.10
Mozilla Seamonkey 1.5.0.8
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.7
Mozilla Seamonkey 2.0.8
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.12
Mozilla Seamonkey 1.1.19
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 2.0.3
Mozilla Seamonkey 2.0.4
3 EDB exploits
1 Github repository
NA
CVE-2009-0950
Stack-based buffer overflow in Apple iTunes prior to 8.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via an itms: URL with a long URL component after a colon.
Apple Itunes 1.0
Apple Itunes 1.1.1
Apple Itunes 1.1.2
Apple Itunes 2.0.1
Apple Itunes 2.0.2
Apple Itunes 2.0.3
Apple Itunes 2.0.4
Apple Itunes 3.0
Apple Itunes 3.0.1
Apple Itunes 4.0.1
Apple Itunes 4.1
Apple Itunes 4.2
Apple Itunes 4.5
Apple Itunes 4.5.0
Apple Itunes 4.6
Apple Itunes 4.7
Apple Itunes 4.7.1
Apple Itunes 4.8.0
Apple Itunes 4.8
Apple Itunes 4.9
Apple Itunes 5.0.0
Apple Itunes 6.0.0
4 EDB exploits
NA
CVE-2014-4113
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a craft...
Microsoft Windows 7 -
Microsoft Windows 8.1 -
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows Server 2012 R2
Microsoft Windows Rt 8.1 -
Microsoft Windows 8 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Rt -
4 EDB exploits
13 Github repositories
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started