Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rpc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4227
The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote malicious users to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.
Novell Netware 6.5
Novell Netware
1 EDB exploit
NA
CVE-2001-0259
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local malicious users to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file.
Ssh Ssh 1.2.28
Ssh Ssh 1.2.29
Ssh Ssh 1.2.27
Ssh Ssh 1.2.30
1 EDB exploit
NA
CVE-2002-2360
The RPC module in Webmin 0.21 up to and including 0.99, when installed without root or admin privileges, allows remote malicious users to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests.
Webmin Webmin 0.41
Webmin Webmin 0.51
Webmin Webmin 0.88
Webmin Webmin 0.92
Webmin Webmin 0.970
Webmin Webmin 0.990
Webmin Webmin 0.21
Webmin Webmin 0.22
Webmin Webmin 0.31
Webmin Webmin 0.93
Webmin Webmin 0.94
Webmin Webmin 0.950
Webmin Webmin 0.960
Webmin Webmin 0.77
Webmin Webmin 0.78
Webmin Webmin 0.79
Webmin Webmin 0.80
Webmin Webmin 0.42
Webmin Webmin 0.76
Webmin Webmin 0.85
Webmin Webmin 0.91
Webmin Webmin 0.980
1 EDB exploit
NA
CVE-2002-1561
The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote malicious users to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference.
Microsoft Windows Nt 4.0
Microsoft Windows Xp
Microsoft Windows 2000 Terminal Services
Microsoft Windows 2000
4 EDB exploits
NA
CVE-2007-1748
Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote malicious users to execute arbitrary code via a long zone name containing character constant...
Microsoft Windows 2003 Server Sp2
Microsoft Windows 2003 Server Sp1
Microsoft Windows 2000
5 EDB exploits
1 Nmap script
NA
CVE-1999-0493
rpc.statd allows remote malicious users to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
Sun Solaris 2.6
Sun Sunos -
Sun Solaris 2.4
Sun Sunos 5.5.1
Sun Solaris 2.5.1
Sun Solaris 2.5
Sun Sunos 5.3
Sun Sunos 5.4
1 EDB exploit
9.8
CVSSv3
CVE-2022-35405
Zoho ManageEngine Password Manager Pro prior to 12101 and PAM360 prior to 5510 are vulnerable to unauthenticated remote code execution. (This also affects ManageEngine Access Manager Plus prior to 4303 with authentication.)
Zohocorp Manageengine Access Manager Plus 4.3
Zohocorp Manageengine Access Manager Plus
Zohocorp Manageengine Password Manager Pro
Zohocorp Manageengine Password Manager Pro 12.1
Zohocorp Manageengine Pam360
Zohocorp Manageengine Pam360 5.5
1 Github repository
NA
CVE-2007-0165
Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote malicious users to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind.
Sun Sunos 5.8
Sun Solaris 9.0
1 EDB exploit
7.8
CVSSv3
CVE-2016-3225
The SMB server component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application that forwards an ...
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1511
Microsoft Windows 10 -
Microsoft Windows Server 2008
Microsoft Windows Vista
1 EDB exploit
2 Github repositories
NA
CVE-2011-3011
BaseServiceImpl.class in CA ARCserve D2D r15 does not properly handle sessions, which allows remote malicious users to obtain credentials, and consequently execute arbitrary commands, via unspecified vectors.
Ca Arcserve D2d R15
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »