Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
h d moore vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2514
win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during construction of a directory-entry table, which allows remote malicious users to execute arbitrary code via a crafted Embedded OpenType (EOT) font,...
Microsoft Windows Server 2008
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Server 2008 -
Microsoft Windows Xp -
Microsoft Windows Vista
Microsoft Windows 2000
1 EDB exploit
NA
CVE-2000-0505
The Apache 1.3.x HTTP server for Windows platforms allows remote malicious users to list directory contents by requesting a URL containing a large number of / characters.
Apache Http Server 1.3.9
Apache Http Server 1.3.11
Ibm Http Server 1.3.3
Ibm Http Server 1.3.6.2
Apache Http Server 1.3.6
Apache Http Server 1.3.12
1 EDB exploit
NA
CVE-2002-1744
Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote malicious users to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot d...
Microsoft Internet Information Services 5.0
1 EDB exploit
NA
CVE-2006-3677
Mozilla Firefox 1.5 prior to 1.5.0.5 and SeaMonkey prior to 1.0.3 allows remote malicious users to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to cod...
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5
Mozilla Seamonkey 1.0.2
3 EDB exploits
NA
CVE-2006-0295
Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey prior to 1.0 might allow remote malicious users to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects, which leads to memory corruption.
Mozilla Firefox 1.5
Mozilla Seamonkey 1.0
Mozilla Thunderbird 1.5
3 EDB exploits
NA
CVE-2003-0722
The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote malicious users to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets.
Sun Solaris
2 EDB exploits
NA
CVE-2002-1473
Multiple buffer overflows in lp subsystem for HP-UX 10.20 up to and including 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code.
Hp Hp-ux 10.20
Hp Hp-ux 11.00
Hp Hp-ux 11.11
2 EDB exploits
NA
CVE-2006-0395
The Download Validation in Mail in Mac OS X 10.4 does not properly recognize attachment file types to warn a user of an unsafe type, which allows user-assisted remote malicious users to execute arbitrary code via crafted file types.
Apple Mac Os X 10.4.5
Apple Mac Os X Server 10.4.5
2 EDB exploits
NA
CVE-2005-2265
Firefox prior to 1.0.5, Mozilla prior to 1.7.9, and Netscape 8.0.2 and 7.2 allows remote malicious users to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string.
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.7
Mozilla Mozilla 1.7.8
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
2 EDB exploits
NA
CVE-2005-3757
The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote malicious users to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, su...
Google Mini Search Appliance
Google Search Appliance
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »