Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rpc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3509
Heap-based buffer overflow in the RPC subsystem in Symantec Backup Exec for Windows Servers 10.0, 10d, and 11d allows remote malicious users to cause a denial of service (process exit) and possibly execute arbitrary code via crafted ncacn_ip_tcp requests.
Symantec Veritas Backup Exec 10d
Symantec Veritas Backup Exec 11d
Symantec Veritas Backup Exec 10.0
8.8
CVSSv3
CVE-2018-5702
Transmission up to and including 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote malicious users to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transm...
Transmissionbt Transmission
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 EDB exploit
NA
CVE-2007-0169
Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup 9.01 up to and including 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allow remote malicious users to execute arbitrary code via RPC requests with crafted data for opnums ...
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Business Protection Suite 2.0
Broadcom Brightstor Arcserve Backup
1 EDB exploit
NA
CVE-2007-0816
The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and previous versions allows remote malicious users to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in cat...
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 11.1
1 EDB exploit
1 Github repository
NA
CVE-2008-6712
The HTTP/XML-RPC service in Crysis 1.21 (game version 1.1.1.6156) and previous versions allows remote malicious users to cause a denial of service (crash) via a long HTTP request, which triggers a NULL pointer dereference.
Ea Crysis 1.1
Ea Crysis 1.2
Ea Crysis
1 EDB exploit
5.3
CVSSv3
CVE-2017-8056
WatchGuard Fireware v11.12.1 and previous versions mishandles requests referring to an XML External Entity (XXE), in the XML-RPC agent. This causes the Firebox wgagent process to crash. This process crash ends all authenticated sessions to the Firebox, including management connec...
Watchguard Fireware
NA
CVE-2008-0948
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions prior to 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote malicious users to caus...
Mit Kerberos 5 1.2.2
8.8
CVSSv3
CVE-2019-2721
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are before 5.2.28 and before 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracl...
Oracle Vm Virtualbox
1 EDB exploit
NA
CVE-2001-0717
Format string vulnerability in ToolTalk database server rpc.ttdbserverd allows remote malicious users to execute arbitrary commands via format string specifiers that are passed to the syslog function.
Tooltalk Tooltalk Database Server
7.5
CVSSv3
CVE-2022-47879
A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods.
Jedox Jedox 2020.2.5
Jedox Jedox Cloud -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »