Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

file file 4.1 vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2

CVE-2014-5428

Unrestricted file upload vulnerability in unspecified web services in Johnson Controls Metasys 4.1 up to and including 6.5, as used in Application and Data Server (ADS), Extended Application and Data Server (aka ADX), LonWorks Control Server 85 LCS8520, Network Automation Engine ...
Johnsoncontrols Metsys 4.1Johnsoncontrols Metsys 6.5
10
CVSSv2

CVE-2015-0198

IBM General Parallel File System (GPFS) 3.4 prior to 3.4.0.32, 3.5 prior to 3.5.0.24, and 4.1 prior to 4.1.0.7 in certain cipherList configurations allows remote malicious users to bypass authentication and execute arbitrary programs as root via unspecified vectors.
Ibm General Parallel File System 4.1Ibm General Parallel File System 3.5Ibm General Parallel File System 3.4
10
CVSSv2

CVE-2015-0240

The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x prior to 3.6.25, 4.0.x prior to 4.0.25, 4.1.x prior to 4.1.17, and 4.2.x prior to 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote malicious users to execute arbitrary cod...
Redhat Enterprise Linux 7.0Redhat Enterprise Linux 6.0Redhat Enterprise Linux 5Samba Samba 4.1.9Samba Samba 3.6.24Samba Samba 4.0.14Samba Samba 3.6.17Samba Samba 4.0.24Samba Samba 3.5.1Samba Samba 4.1.16Samba Samba 4.1.12Samba Samba 4.0.2Samba Samba 4.2.0Samba Samba 3.5.9Samba Samba 4.1.14Samba Samba 3.6.10Samba Samba 3.5.7Samba Samba 4.0.22Samba Samba 4.0.11Samba Samba 4.1.7Samba Samba 4.0.3Samba Samba 3.5.11
10
CVSSv2

CVE-2014-8118

Integer overflow in RPM 4.12 and previous versions allows remote malicious users to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer overflow.
Rpm Rpm 2.3.5Rpm Rpm 4.4.2.1Rpm Rpm 1.4.3Rpm Rpm 3.0.1Rpm Rpm 4.1Rpm Rpm 2.2.3.11Rpm Rpm 4.8.0Rpm Rpm 2.4.4Rpm Rpm 2.3.8Rpm Rpm 2.0.6Rpm Rpm 1.4.4Rpm Rpm 1.4.2/aRpm Rpm 2.4.1Rpm Rpm 2.4.9Rpm Rpm 2.6.7Rpm Rpm 1.4Rpm Rpm 2.0.10Rpm Rpm 2.4.5Rpm Rpm 4.9.0Rpm Rpm 4.0.1Rpm Rpm 4.9.1.2Rpm Rpm 2.2.11
10
CVSSv2

CVE-2014-6277

GNU Bash up to and including 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote malicious users to execute arbitrary code or cause a denial of service (uninitialized memory access, and untrusted-pointer read and...
Gnu Bash 4.0Gnu Bash 4.3Gnu Bash 3.2.48Gnu Bash 1.14.3Gnu Bash 4.1Gnu Bash 2.05Gnu Bash 1.14.1Gnu Bash 3.0Gnu Bash 2.01Gnu Bash 2.04Gnu Bash 2.0Gnu Bash 2.01.1Gnu Bash 1.14.7Gnu Bash 3.1Gnu Bash 1.14.6Gnu Bash 1.14.2Gnu Bash 1.14.4Gnu Bash 4.2Gnu Bash 2.02.1Gnu Bash 3.0.16Gnu Bash 1.14.5Gnu Bash 1.14.0
10
CVSSv2

CVE-2013-5486

Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) prior to 6.2(1) allows remote malicious users to write arbitrary files via the chartid parameter, aka Bug IDs CSCue77035 and CSCue77036. NOTE: this can b...
Cisco Prime Data Center Network Manager 5.0(3)Cisco Prime Data Center Network Manager 6.1(1a)Cisco Prime Data Center Network Manager 5.2(2a)Cisco Prime Data Center Network Manager 4.1(3)Cisco Prime Data Center Network Manager 5.1(1)Cisco Prime Data Center Network Manager 4.1(2)Cisco Prime Data Center Network Manager 5.2(2e)Cisco Prime Data Center Network Manager 5.2(2)Cisco Prime Data Center Network Manager 6.1(1b)Cisco Prime Data Center Network Manager 5.2(2b)Cisco Prime Data Center Network Manager 5.1(2)Cisco Prime Data Center Network Manager 5.2(2c)Cisco Prime Data Center Network Manager 4.1(5)Cisco Prime Data Center Network Manager 5.1(3u)Cisco Prime Data Center Network Manager 4.2(3)Cisco Prime Data Center Network Manager 5.0(2)Cisco Prime Data Center Network Manager 4.2(1)Cisco Prime Data Center Network Manager 4.1(4)Cisco Prime Data Center Network Manager
10
CVSSv2

CVE-2009-3027

VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous Protection Server (CPS) 11d, 12.0, and 12.5; Veritas NetBackup Operations Manager (NOM) 6.0 GA up to and including 6.5.5; Veritas Backup Reporter (VBR) 6.0 GA up to and including 6.6; Veritas Storage Foundation (SF) 3.5; V...
Symantec Veritas Cluster Server One 2.0.1Symantec Veritas Storage Foundation For Oracle Real Application Cluster 3.5Symantec Veritas Storage Foundation Cluster File System 4.0Symantec Veritas Storage Foundation Manager 1.1Symantec Veritas Cluster Server 5.0Symantec Veritas Storage Foundation Cluster File System 5.0Symantec Veritas Netbackup Operations Manager 6.5.5Symantec Veritas Storage Foundation For Windows High Availability 5.0rp1aSymantec Veritas Storage Foundation Manager 1.0Symantec Veritas Storage Foundation For Windows High Availability 4.3mp2Symantec Veritas Storage Foundation Cluster File System 3.5Symantec Veritas Storage Foundation For Oracle Real Application Cluster 4.0Symantec Veritas Storage Foundation 3.5Symantec Veritas Micromeasure 5.0Symantec Veritas Storage Foundation For Windows High Availability 5.1Symantec Backup Exec Continuous Protection Server 12.5Symantec Veritas Storage Foundation For High Availability 3.5Symantec Veritas Cluster Server One 2.0Symantec Veritas Storage Foundation For Windows High Availability 5.1ap1Symantec Veritas Netbackup Operations Manager 6.0 GaSymantec Veritas Storage Foundation For Oracle Real Application Cluster 5.0Symantec Veritas Storage Foundation For Sybase 5.0
10
CVSSv2

CVE-2005-3625

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows malicious users to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, a...
Easy Software Products Cups 1.1.22Kde Kpdf 3.4.3Kde Kdegraphics 3.4.3Tetex Tetex 3.0Kde Koffice 1.4.1Kde Kword 1.4.2Poppler Poppler 0.4.2Tetex Tetex 1.0.7Sgi Propack 3.0Easy Software Products Cups 1.1.23 Rc1Kde Kdegraphics 3.2Kde Koffice 1.4.2Libextractor LibextractorEasy Software Products Cups 1.1.22 Rc1Xpdf Xpdf 3.0Tetex Tetex 2.0.2Tetex Tetex 2.0.1Conectiva Linux 10.0Kde Kpdf 3.2Easy Software Products Cups 1.1.23Kde Koffice 1.4Tetex Tetex 2.0
10
CVSSv2

CVE-2005-2668

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allow remote malicious users to execute arbitrary code via unknown vectors.
Ca Unicenter Management 4.1Ca Unicenter Asset Management 4.0Ca Unicenter Management 3.5Ca Etrust Admin 2.1Ca Unicenter Software Delivery 4.0Ca Unicenter Management 5.0.1Ca Unicenter Enterprise Job Manager 1.0Ca Etrust Admin 2.9Ca Etrust Admin 2.4Ca Unicenter Management 4.0Ca Etrust Admin 2.7Ca Unicenter Management 5.0Ca Unicenter Tng 2.2Broadcom Advantage Data Transport 3.0Broadcom Adviseit 2.4Broadcom Brightstor Portal 11.1Broadcom Brightstor San Manager 1.1Broadcom Brightstor San Manager 11.1Broadcom Cleverpath Aion 10.0Broadcom Cleverpath Ecm 3.5Broadcom Cleverpath Olap 5.1Broadcom Cleverpath Predictive Analysis Server 2.0
10
CVSSv2

CVE-2005-0708

The sendfile system call in FreeBSD 4.8 up to and including 4.11 and 5 up to and including 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote malicious users to obtain sensitive information.
Freebsd Freebsd 4.3Freebsd Freebsd 4.1.1Freebsd Freebsd 4.6Freebsd Freebsd 5.3Freebsd Freebsd 5.1Freebsd Freebsd 4.4Freebsd Freebsd 4.8Freebsd Freebsd 4.7Freebsd Freebsd 5.2.1Freebsd Freebsd 5.0Freebsd Freebsd 4.5Freebsd Freebsd 4.10Freebsd Freebsd 4.2Freebsd Freebsd 4.1Dragonflybsd Dragonflybsd 1.0Freebsd Freebsd 4.9Freebsd Freebsd 5.2Freebsd Freebsd 5.4Freebsd Freebsd 4.0Dragonflybsd Dragonflybsd 1.1Freebsd Freebsd 4.6.2Freebsd Freebsd 4.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCPCVE-2024-4577CVE-2024-2695CVE-2024-31870injectionCVE-2024-3813arbitrary codeCVE-2024-27801CVE-2024-30120
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook