Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cesar cerrudo vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2003-0118
SQL injection vulnerability in the Document Tracking and Administration (DTA) website of Microsoft BizTalk Server 2000 and 2002 allows remote malicious users to execute operating system commands via a request to (1) rawdocdata.asp or (2) RawCustomSearchField.asp containing an emb...
Microsoft Biztalk Server 2000
Microsoft Biztalk Server 2002
2 EDB exploits
755
VMScore
CVE-2003-0470
Buffer overflow in the "RuFSI Utility Class" ActiveX control (aka "RuFSI Registry Information Class"), as used for the Symantec Security Check service, allows remote malicious users to execute arbitrary code via a long argument to CompareVersionStrings.
Symantec Security Check
1 EDB exploit
755
VMScore
CVE-2003-0117
Buffer overflow in the HTTP receiver function (BizTalkHTTPReceive.dll ISAPI) of Microsoft BizTalk Server 2002 allows malicious users to execute arbitrary code via a certain request to the HTTP receiver.
Microsoft Biztalk Server 2002
1 EDB exploit
935
VMScore
CVE-2010-0655
Use-after-free vulnerability in Google Chrome prior to 4.0.249.78 allows user-assisted remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving the display of a blocked popup window during navigation to a dif...
Google Chrome 0.4.154.33
Google Chrome 0.2.149.27
Google Chrome 2.0.172.37
Google Chrome 1.0.154.53
Google Chrome 3.0.195.24
Google Chrome 3.0.195.21
Google Chrome 3.0.195.33
Google Chrome 1.0.154.42
Google Chrome 1.0.154.59
Google Chrome 0.2.149.29
Google Chrome 0.2.149.30
Google Chrome 0.4.154.22
Google Chrome 1.0.154.39
Google Chrome 1.0.154.36
Google Chrome 3.0.193.2
Google Chrome 2.0.157.0
Google Chrome 2.0.172.38
Google Chrome 0.3.154.3
Google Chrome 2.0.172.31
Google Chrome 1.0.154.52
Google Chrome 2.0.169.1
Google Chrome
1 EDB exploit
755
VMScore
CVE-2002-0982
Microsoft SQL Server 2000 SP2, when configured as a distributor, allows malicious users to execute arbitrary code via the @scriptfile parameter to the sp_MScopyscript stored procedure.
Microsoft Sql Server 2000
1 EDB exploit
685
VMScore
CVE-2010-2554
The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 has incorrect ACLs on its registry keys, which allows local users to gain privileges via vectors involving a named pipe and impersonation, aka "Traci...
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows 7 -
Microsoft Windows Vista -
Microsoft Windows Vista
1 EDB exploit
695
VMScore
CVE-2009-0079
The RPCSS service in Microsoft Windows XP SP2 and SP3 and Server 2003 SP1 and SP2 does not properly implement isolation among a set of distinct processes that (1) all run under the NetworkService account or (2) all run under the LocalService account, which allows local users to g...
Microsoft Windows Server 2003
Microsoft Windows Xp
1 EDB exploit
725
VMScore
CVE-2004-0894
LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Web
Microsoft Windows Xp
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Datacenter 64-bit
1 EDB exploit
755
VMScore
CVE-2002-0644
Buffer overflow in several Database Consistency Checkers (DBCCs) for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 allows members of the db_owner and db_ddladmin roles to execute arbitrary code.
Microsoft Data Engine 2000
Microsoft Sql Server 2000
1 EDB exploit
905
VMScore
CVE-2008-1436
Microsoft Windows XP Professional SP2, Vista, and Server 2003 and 2008 does not properly assign activities to the (1) NetworkService and (2) LocalService accounts, which might allow context-dependent malicious users to gain privileges by using one service process to capture a res...
Microsoft Windows Server 2003
Microsoft Windows Vista -
Microsoft Windows-nt Vista
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Xp
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »