Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
michal zalewski vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-3509
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote malicious users to cause a denial of service (crash) via vectors related to the "addition ...
Gnu Libiberty -
Gnu Binutils 2.22
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 10.04
Debian Debian Linux 7.0
NA
CVE-2007-5336
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-5339. Reason: This candidate is a reservation duplicate of CVE-2007-5339. Notes: All CVE users should reference CVE-2007-5339 instead of this candidate. All references and descriptions in this candidate have ...
NA
CVE-2010-0624
Heap-based buffer overflow in the rmt_read__ function in lib/rtapelib.c in the rmt client functionality in GNU tar prior to 1.23 and GNU cpio prior to 2.11 allows remote rmt servers to cause a denial of service (memory corruption) or possibly execute arbitrary code by sending mor...
Gnu Tar 1.13.16
Gnu Tar 1.13.17
Gnu Tar 1.14.90
Gnu Tar 1.15
Gnu Tar 1.18
Gnu Tar 1.17
Gnu Cpio 2.5
Gnu Cpio 2.5.90
Gnu Tar 1.13.11
Gnu Tar 1.13.14
Gnu Tar 1.14
Gnu Tar 1.14.1
Gnu Tar 1.20
Gnu Tar 1.19
Gnu Cpio 1.3
Gnu Cpio 2.4-2
Gnu Tar
Gnu Cpio
Gnu Tar 1.13.18
Gnu Tar 1.13.19
Gnu Tar 1.15.1
Gnu Tar 1.15.90
1 Github repository
NA
CVE-2010-3177
Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in Mozilla Firefox prior to 3.5.14 and 3.6.x prior to 3.6.11, and SeaMonkey prior to 2.0.9, allow remote malicious users to inject arbitrary web script or HTML via a crafted name of a (1) file or (2) directo...
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.18
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 2.0.1
Mozilla Seamonkey 2.0.2
Mozilla Seamonkey 2.0
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.1.11
NA
CVE-2007-3656
Mozilla Firefox prior to 1.8.0.13 and 1.8.1.x prior to 1.8.1.5 does not perform a security zone check when processing a wyciwyg URI, which allows remote malicious users to obtain sensitive information, poison the browser cache, and possibly enable further attack vectors via (1) H...
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.2
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.4
NA
CVE-2007-3736
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 2.0.0.5 allows remote malicious users to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or (2) setTimeout function, pro...
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0
NA
CVE-2007-3737
Mozilla Firefox prior to 2.0.0.5 allows remote malicious users to execute arbitrary code with chrome privileges by calling an event handler from an unspecified "element outside of a document."
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.2
NA
CVE-2004-1617
Lynx, lynx-ssl, and lynx-cur prior to 2.8.6dev.8 allow remote malicious users to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag with a large COLS value and (2) a large tag name in an element that is n...
University Of Kansas Lynx 2.8.3 Dev22
University Of Kansas Lynx 2.8.3 Pre5
University Of Kansas Lynx 2.8.5 Dev4
University Of Kansas Lynx 2.8.5 Dev5
University Of Kansas Lynx 2.7
University Of Kansas Lynx 2.8
University Of Kansas Lynx 2.8.4 Rel1
University Of Kansas Lynx 2.8.5
University Of Kansas Lynx 2.8.1
University Of Kansas Lynx 2.8.2 Rel1
University Of Kansas Lynx 2.8.3
University Of Kansas Lynx 2.8.5 Dev2
University Of Kansas Lynx 2.8.5 Dev3
University Of Kansas Lynx 2.8.3 Rel1
University Of Kansas Lynx 2.8.4
University Of Kansas Lynx 2.8.5 Dev8
NA
CVE-2013-6621
Use-after-free vulnerability in Google Chrome prior to 31.0.1650.48 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors related to the x-webkit-speech attribute in a text INPUT element.
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Google Chrome 31.0.1650.41
Google Chrome 31.0.1650.39
Google Chrome 31.0.1650.31
Google Chrome 31.0.1650.30
Google Chrome 31.0.1650.22
Google Chrome 31.0.1650.20
Google Chrome 31.0.1650.13
Google Chrome 31.0.1650.12
Google Chrome 31.0.1650.11
Google Chrome 31.0.1650.4
Google Chrome 31.0.1650.3
Google Chrome 31.0.1650.45
Google Chrome 31.0.1650.44
Google Chrome 31.0.1650.35
Google Chrome 31.0.1650.34
Google Chrome 31.0.1650.27
Google Chrome 31.0.1650.26
Google Chrome 31.0.1650.17
Google Chrome 31.0.1650.16
NA
CVE-2013-6623
The SVG implementation in Blink, as used in Google Chrome prior to 31.0.1650.48, allows remote malicious users to cause a denial of service (out-of-bounds read) by leveraging the use of tree order, rather than transitive dependency order, for layout.
Google Chrome
Google Chrome 31.0.1650.46
Google Chrome 31.0.1650.37
Google Chrome 31.0.1650.36
Google Chrome 31.0.1650.29
Google Chrome 31.0.1650.28
Google Chrome 31.0.1650.19
Google Chrome 31.0.1650.18
Google Chrome 31.0.1650.10
Google Chrome 31.0.1650.9
Google Chrome 31.0.1650.2
Google Chrome 31.0.1650.0
Google Chrome 31.0.1650.45
Google Chrome 31.0.1650.44
Google Chrome 31.0.1650.35
Google Chrome 31.0.1650.34
Google Chrome 31.0.1650.27
Google Chrome 31.0.1650.26
Google Chrome 31.0.1650.17
Google Chrome 31.0.1650.16
Google Chrome 31.0.1650.15
Google Chrome 31.0.1650.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »