Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0579
uvadmsh in IBM U2 UniVerse 10.0.0.9 and previous versions trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.
Ibm U2 Universe
1 EDB exploit
NA
CVE-2003-0449
Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via (1) a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so in_proapsv, or (2) the -installdir comm...
Progress Database 9.1
1 EDB exploit
NA
CVE-2007-0463
Format string vulnerability in Apple Software Update 2.0.5 on Mac OS X 10.4.8 allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via format string specifiers in (1) SWUTMP or (2) SUCATALOG filenames, or using the (3) applicati...
Apple Software Update 2.0.5
1 EDB exploit
NA
CVE-2001-1408
Directory traversal vulnerability in readmsg.php in WebMail 2.0.1 in Cobalt Qube 3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the mailbox parameter.
Cobalt Webmail 2.0.1
Cobalt Qube 3.0
1 EDB exploit
NA
CVE-2003-0274
Buffer overflow in catmail for ListProc 8.2.09 and previous versions allows remote malicious users to execute arbitrary code via a long ULISTPROC_UMASK value.
Cren Listproc 8.2.9
1 EDB exploit
NA
CVE-2003-0390
Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and previous versions, when used in setuid programs, may allow local users to execute arbitrary code via long command line options that are fed into macros such as opt_warn_2, as used in functions such as...
James Theiler Opt
2 EDB exploits
NA
CVE-2009-0695
hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote malicious users to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action.
Dell Wyse Device Manager 4.7.0
Dell Wyse Device Manager 4.7.2
Dell Wyse Device Manager 4.7.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2