Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cesar cerrudo vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2009-0078
The Windows Management Instrumentation (WMI) provider in Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly implement isolation among a set of distinct processes that (1) all run under the NetworkService account or (2)...
Microsoft Windows Vista Gold
Microsoft Windows Xp
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Server 2003
1 EDB exploit
6.9
CVSSv2
CVE-2009-0080
The ThreadPool class in Windows Vista Gold and SP1, and Server 2008, does not properly implement isolation among a set of distinct processes that (1) all run under the NetworkService account or (2) all run under the LocalService account, which allows local users to gain privilege...
Microsoft Windows Server 2008 -
Microsoft Windows Vista -
1 EDB exploit
5
CVSSv2
CVE-2005-0701
Directory traversal vulnerability in Oracle Database Server 8i and 9i allows remote malicious users to read or rename arbitrary files via "\\.\\.." (modified dot dot backslash) sequences to UTL_FILE functions such as (1) UTL_FILE.FOPEN or (2) UTL_FILE.frename.
Oracle Database Server
1 EDB exploit
7.2
CVSSv2
CVE-2005-0047
Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows malicious users to execute arbitrary code, aka the "COM Structured Storage Vulnerability."
Microsoft Windows Xp
Microsoft Windows 2003 Server R2
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Web
1 EDB exploit
7.5
CVSSv2
CVE-2005-0058
Buffer overflow in the Telephony Application Programming Interface (TAPI) for Microsoft Windows 98, Windows 98 SE, Windows ME, Windows 2000, Windows XP, and Windows Server 2003 allows malicious users to elevate privileges or execute arbitrary code via a crafted message.
Microsoft Windows 2000
Microsoft Windows 98se
Microsoft Windows Me
Microsoft Windows 2003 Server R2
Microsoft Windows 98
Microsoft Windows Xp
1 EDB exploit
7.2
CVSSv2
CVE-2003-0908
The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message that accesses the context sensitive help button in the GUI, as demonstrate...
Microsoft Windows 2000
1 EDB exploit
5
CVSSv2
CVE-2010-0314
Apple Safari allows remote malicious users to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property val...
Apple Safari
1 EDB exploit
5
CVSSv2
CVE-2010-0315
WebKit before r53607, as used in Google Chrome prior to 4.0.249.89, allows remote malicious users to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and the...
Google Chrome 3.0.195.33
Google Chrome 3.0.195.32
Google Chrome 1.0.154.65
Google Chrome 2.0.172.28
Google Chrome 1.0.154.43
Google Chrome 1.0.154.48
Google Chrome 2.0.172.27
Google Chrome 3.0.182.2
Google Chrome 3.0.190.2
Google Chrome 2.0.172.33
Google Chrome 1.0.154.46
Google Chrome 2.0.159.0
Google Chrome 2.0.169.0
Google Chrome 3.0.195.24
Google Chrome 3.0.195.21
Google Chrome 1.0.154.42
Google Chrome 1.0.154.59
Google Chrome 0.2.149.29
Google Chrome 0.2.149.30
Google Chrome 2.0.172.2
Google Chrome 2.0.156.1
Google Chrome 0.2.153.1
1 EDB exploit
7.2
CVSSv2
CVE-2004-0213
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by dir...
Microsoft Windows 2000 -
4 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2