Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vserver vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-0307
Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote malicious users to execute arbitrary code via unknown vectors that trigger heap corruption.
Sap Maxdb 7.6.0.37
6.8
CVSSv2
CVE-2011-2191
Cross-site request forgery (CSRF) vulnerability in Cherokee-admin in Cherokee prior to 1.2.99 allows remote malicious users to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences, as demonstrated by a crafted nickname field to...
Cherokee-project Cherokee 1.0.0
Cherokee-project Cherokee 1.0.1
Cherokee-project Cherokee 1.0.8
Cherokee-project Cherokee 1.0.9
Cherokee-project Cherokee 1.0.16
Cherokee-project Cherokee 1.0.17
Cherokee-project Cherokee 1.0.18
Cherokee-project Cherokee 0.99.4
Cherokee-project Cherokee 0.99.5
Cherokee-project Cherokee 0.99.12
Cherokee-project Cherokee 0.99.13
Cherokee-project Cherokee 0.99.20
Cherokee-project Cherokee 0.99.21
Cherokee-project Cherokee 0.99.22
Cherokee-project Cherokee 0.99.29
Cherokee-project Cherokee 0.99.30
Cherokee-project Cherokee 0.99.37
Cherokee-project Cherokee 0.99.38
Cherokee-project Cherokee 0.99.46
Cherokee-project Cherokee 0.99.47
Cherokee-project Cherokee 0.11.2
Cherokee-project Cherokee 0.11.3
4.3
CVSSv2
CVE-2013-6944
Cross-site scripting (XSS) vulnerability in the user interface in the AAA TM vServer in Citrix NetScaler Application Delivery Controller (ADC) 9.3.x prior to 9.3-64.4, 10.0 prior to 10.0-77.5, and 10.1 prior to 10.1-118.7 allows remote malicious users to inject arbitrary web scri...
Citrix Netscaler Application Delivery Controller Firmware 10.0
Citrix Netscaler Application Delivery Controller Firmware 9.3\\(1\\)
Citrix Netscaler Application Delivery Controller Firmware 9.3.e
Citrix Netscaler Application Delivery Controller Firmware 10.1
4.4
CVSSv2
CVE-2008-0163
Linux kernel 2.6, when using vservers, allows local users to access resources of other vservers via a symlink attack in /proc.
Linux Linux Kernel 2.6.0
2.1
CVSSv2
CVE-2008-0010
The copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 up to and including 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations.
Linux Linux Kernel 2.6.22
Linux Linux Kernel 2.6.22.1
Linux Linux Kernel 2.6.23
Linux Linux Kernel 2.6.23.7
Linux Linux Kernel 2.6.23.9
Linux Linux Kernel 2.6.22.16
Linux Linux Kernel 2.6.22.3
Linux Linux Kernel 2.6.23.1
Linux Linux Kernel 2.6.23.14
Linux Linux Kernel 2.6.22.6
Linux Linux Kernel 2.6.22.7
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.23.5
Linux Linux Kernel 2.6.23.6
Linux Linux Kernel 2.6.22.4
Linux Linux Kernel 2.6.22.5
Linux Linux Kernel 2.6.23.2
Linux Linux Kernel 2.6.23.3
Linux Linux Kernel 2.6.24
2 EDB exploits
7.2
CVSSv2
CVE-2008-0600
The vmsplice_to_pipe function in Linux kernel 2.6.17 up to and including 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE...
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.17
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.20
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.19
Linux Linux Kernel 2.6.20.13
Linux Linux Kernel 2.6.22.4
Linux Linux Kernel 2.6.17.2
Linux Linux Kernel 2.6.23.7
Linux Linux Kernel 2.6.17.8
Linux Linux Kernel 2.6.17.4
Linux Linux Kernel 2.6.17.14
Linux Linux Kernel 2.6.24
Linux Linux Kernel 2.6.18.3
Linux Linux Kernel 2.6.22.1
Linux Linux Kernel 2.6.17.3
2 EDB exploits
4.9
CVSSv2
CVE-2006-5755
Linux kernel prior to 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context switch, which allows local users to cause a denial of service (crash) by causing SYSENTER to set an NT flag, which can trigger a crash on the IRET of the next t...
Linux Linux Kernel
4.7
CVSSv2
CVE-2007-4133
The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel prior to 2.6.19-rc4 perform certain prio_tree calculations using HPAGE_SIZE instead of PAGE_SIZE units, which allows local users to cause a denial of service (panic) v...
Linux Linux Kernel
7.2
CVSSv2
CVE-2007-4573
The IA32 system call emulation functionality in Linux kernel 2.4.x and 2.6.x prior to 2.6.22.7, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used, which might allow local users to gain privileges by trigger...
Linux Linux Kernel
2 EDB exploits
4
CVSSv2
CVE-2007-5093
The disconnect method in the Philips USB Webcam (pwc) driver in Linux kernel 2.6.x prior to 2.6.22.6 "relies on user space to close the device," which allows user-assisted local malicious users to cause a denial of service (USB subsystem hang and CPU consumption in khub...
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.17
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.20
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.12.12
Linux Linux Kernel 2.6.19
Linux Linux Kernel 2.6.14
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.11.10
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.20.13
Linux Linux Kernel 2.6.22.4
Linux Linux Kernel 2.6.16
Linux Linux Kernel 2.6.17.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2