Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache james vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2014-3524
Apache OpenOffice prior to 4.1.1 allows remote malicious users to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet.
Apache Openoffice
Libreoffice Libreoffice
3 Github repositories
4.3
CVSSv2
CVE-2013-2172
jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x prior to 1.4.8 and 1.5.x prior to 1.5.5 allows context-dependent malicious users to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrar...
Apache Santuario Xml Security For Java 1.5.1
Apache Santuario Xml Security For Java 1.5.2
Apache Santuario Xml Security For Java 1.5.4
Apache Santuario Xml Security For Java 1.5.3
Apache Santuario Xml Security For Java 1.4.7
Apache Santuario Xml Security For Java 1.5.0
4.3
CVSSv2
CVE-2013-2153
The XML digital signature functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) prior to 1.7.1 allows context-dependent malicious users to reuse signatures and spoof arbitrary content via crafted Reference elements in the Signat...
Apache Xml Security For C++ 1.6.0
Apache Xml Security For C++ 1.1.0
Apache Xml Security For C++ 1.6.1
Apache Xml Security For C++ 1.2.1
Apache Xml Security For C++ 1.5.1
Apache Xml Security For C++ 1.5.0
Apache Xml Security For C++ 0.2.0
Apache Xml Security For C++ 1.3.0
Apache Xml Security For C++
Apache Xml Security For C++ 1.4.0
Apache Xml Security For C++ 1.3.1
Apache Xml Security For C++ 1.2.0
Apache Xml Security For C++ 0.1.0
7.5
CVSSv2
CVE-2013-2154
Stack-based buffer overflow in the XML Signature Reference functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) prior to 1.7.1 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute a...
Apache Xml Security For C++ 1.6.0
Apache Xml Security For C++ 1.1.0
Apache Xml Security For C++ 1.6.1
Apache Xml Security For C++ 1.2.1
Apache Xml Security For C++ 1.5.1
Apache Xml Security For C++ 1.5.0
Apache Xml Security For C++ 0.2.0
Apache Xml Security For C++ 1.3.0
Apache Xml Security For C++
Apache Xml Security For C++ 1.4.0
Apache Xml Security For C++ 1.3.1
Apache Xml Security For C++ 1.2.0
Apache Xml Security For C++ 0.1.0
5.8
CVSSv2
CVE-2013-2155
Apache Santuario XML Security for C++ (aka xml-security-c) prior to 1.7.1 does not properly validate length values, which allows remote malicious users to cause a denial of service or bypass the CVE-2009-0217 protection mechanism and spoof a signature via crafted length values to...
Apache Xml Security For C++ 1.6.0
Apache Xml Security For C++ 1.1.0
Apache Xml Security For C++ 1.6.1
Apache Xml Security For C++ 1.2.1
Apache Xml Security For C++ 1.5.1
Apache Xml Security For C++ 1.5.0
Apache Xml Security For C++ 0.2.0
Apache Xml Security For C++ 1.3.0
Apache Xml Security For C++
Apache Xml Security For C++ 1.4.0
Apache Xml Security For C++ 1.3.1
Apache Xml Security For C++ 1.2.0
Apache Xml Security For C++ 0.1.0
7.5
CVSSv2
CVE-2013-2156
Heap-based buffer overflow in the Exclusive Canonicalization functionality (xsec/canon/XSECC14n20010315.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) prior to 1.7.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitr...
Apache Xml Security For C++ 1.6.0
Apache Xml Security For C++ 1.1.0
Apache Xml Security For C++ 1.6.1
Apache Xml Security For C++ 1.2.1
Apache Xml Security For C++ 1.5.1
Apache Xml Security For C++ 1.5.0
Apache Xml Security For C++ 0.2.0
Apache Xml Security For C++ 1.3.0
Apache Xml Security For C++
Apache Xml Security For C++ 1.4.0
Apache Xml Security For C++ 1.3.1
Apache Xml Security For C++ 1.2.0
Apache Xml Security For C++ 0.1.0
7.8
CVSSv2
CVE-2006-2806
The SMTP server in Apache Java Mail Enterprise Server (aka Apache James) 2.2.0 allows remote malicious users to cause a denial of service (CPU consumption) via a long argument to the MAIL command.
Apache James 2.2.0
4.9
CVSSv2
CVE-2004-2650
Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock from being released and causes a memory leak.
Apache James 2.2.0
7.5
CVSSv2
CVE-2002-0655
OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow malicious users to cause a denial of service and possibly execute arbitrary code.
Oracle Http Server 9.0.1
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.2
Openssl Openssl 0.9.3
Openssl Openssl 0.9.7
Oracle Application Server
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.4
Oracle Http Server 9.2.0
Openssl Openssl 0.9.5a
Oracle Corporate Time Outlook Connector 3.3
Openssl Openssl 0.9.6b
Oracle Application Server 1.0.2.1s
Openssl Openssl 0.9.6c
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.5
Oracle Application Server 1.0.2
5
CVSSv2
CVE-2002-0659
The ASN1 library in OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, allows remote malicious users to cause a denial of service via invalid encodings.
Oracle Http Server 9.0.1
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.2
Openssl Openssl 0.9.3
Openssl Openssl 0.9.7
Oracle Application Server
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.4
Oracle Http Server 9.2.0
Openssl Openssl 0.9.5a
Oracle Corporate Time Outlook Connector 3.3
Openssl Openssl 0.9.6b
Oracle Application Server 1.0.2.1s
Openssl Openssl 0.9.6c
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.5
Oracle Application Server 1.0.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »