Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
service location protocol project service location protocol - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-29552
The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote malicious user to register arbitrary services. This could allow the malicious user to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor.
Netapp Smi-s Provider -
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
Suse Manager Server -
Vmware Esxi
Service Location Protocol Project Service Location Protocol -
5
CVSSv2
CVE-2010-3609
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote malicious users to cause a denial of service (infinite loop) via...
Vmware Esxi 4.0
Openslp Openslp 1.2.1
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
1 EDB exploit
7.5
CVSSv2
CVE-2004-0005
Multiple buffer overflows in Gaim 0.75 allow remote malicious users to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be written beyond the buffer, (2) octal encoding in yahoo_decode that causes a po...
Gaim Project Gaim 0.75
5.8
CVSSv2
CVE-2009-3555
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and previous versions, OpenSSL prior to 0.9.8l, GnuTLS 2.8.5 and previous versions, Mozilla Network Security Ser...
Openssl Openssl 1.0
Apache Http Server
Openssl Openssl
Gnu Gnutls
Mozilla Nss
Debian Debian Linux 5.0
Canonical Ubuntu Linux 10.10
Fedoraproject Fedora 11
Fedoraproject Fedora 13
Debian Debian Linux 4.0
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 9.04
Debian Debian Linux 6.0
Fedoraproject Fedora 12
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.10
Fedoraproject Fedora 14
F5 Nginx
2 EDB exploits
10 Github repositories
8.5
CVSSv2
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
2.1
CVSSv2
CVE-2011-0710
The task_show_regs function in arch/s390/kernel/traps.c in the Linux kernel prior to 2.6.38-rc4-next-20110216 on the s390 platform allows local users to obtain the values of the registers of an arbitrary process by reading a status file under /proc/.
Linux Linux Kernel 2.6.38
Linux Linux Kernel
2.1
CVSSv2
CVE-2010-3875
The ax25_getname function in net/ax25/af_ax25.c in the Linux kernel prior to 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure.
Linux Linux Kernel 2.6.37
Linux Linux Kernel
Debian Debian Linux 5.0
5.4
CVSSv2
CVE-2011-1767
net/ipv4/ip_gre.c in the Linux kernel prior to 2.6.34, when ip_gre is configured as a module, allows remote malicious users to cause a denial of service (OOPS) by sending a packet during module loading.
Linux Linux Kernel 2.6.33.7
Linux Linux Kernel 2.6.33.9
Linux Linux Kernel 2.6.33.18
Linux Linux Kernel 2.6.33.14
Linux Linux Kernel 2.6.33.19
Linux Linux Kernel 2.6.33.2
Linux Linux Kernel 2.6.33.6
Linux Linux Kernel 2.6.33.17
Linux Linux Kernel 2.6.33.1
Linux Linux Kernel 2.6.33.4
Linux Linux Kernel 2.6.33
Linux Linux Kernel 2.6.33.12
Linux Linux Kernel 2.6.33.3
Linux Linux Kernel 2.6.33.13
Linux Linux Kernel 2.6.33.11
Linux Linux Kernel 2.6.33.15
Linux Linux Kernel 2.6.33.16
Linux Linux Kernel
Linux Linux Kernel 2.6.33.8
Linux Linux Kernel 2.6.33.5
Linux Linux Kernel 2.6.33.10
5.4
CVSSv2
CVE-2011-1768
The tunnels implementation in the Linux kernel prior to 2.6.34, when tunnel functionality is configured as a module, allows remote malicious users to cause a denial of service (OOPS) by sending a packet during module loading.
Linux Linux Kernel 2.6.33.7
Linux Linux Kernel 2.6.33.9
Linux Linux Kernel 2.6.33.18
Linux Linux Kernel 2.6.33.14
Linux Linux Kernel 2.6.33.19
Linux Linux Kernel 2.6.33.2
Linux Linux Kernel 2.6.33.6
Linux Linux Kernel 2.6.33.17
Linux Linux Kernel 2.6.33.1
Linux Linux Kernel 2.6.33.4
Linux Linux Kernel 2.6.33
Linux Linux Kernel 2.6.33.12
Linux Linux Kernel 2.6.33.3
Linux Linux Kernel 2.6.33.13
Linux Linux Kernel 2.6.33.11
Linux Linux Kernel 2.6.33.15
Linux Linux Kernel 2.6.33.16
Linux Linux Kernel
Linux Linux Kernel 2.6.33.8
Linux Linux Kernel 2.6.33.5
Linux Linux Kernel 2.6.33.10
2.1
CVSSv2
CVE-2011-0711
The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel prior to 2.6.38-rc6-git3 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FSGEOMETRY_V1 ioctl call.
Linux Linux Kernel 2.6.38
Linux Linux Kernel
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server Aus 5.6
Redhat Enterprise Linux Server Eus 5.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »