Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
metasploit vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-0397
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and previous versions allows remote malicious users to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Subversion Subversion 1.0.2
3 EDB exploits
9.3
CVSSv2
CVE-2012-3569
Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x prior to 8.0.5, VMware Player 4.x prior to 4.0.5, and other products, allows user-assisted remote malicious users to execute arbitrary code via a crafted OVF file.
Vmware Ovf Tool 2.1
Vmware Workstation 8.0
Vmware Workstation 8.0.0.18997
Vmware Workstation 8.0.2
Vmware Workstation 8.0.3
Vmware Workstation 8.0.4
Vmware Workstation 8.0.1
Vmware Workstation 8.0.1.27038
Vmware Player 4.0
Vmware Player 4.0.0.18997
Vmware Player 4.0.3
Vmware Player 4.0.4
Vmware Player 4.0.1
Vmware Player 4.0.2
2 EDB exploits
7.5
CVSSv2
CVE-2006-5792
Unspecified vulnerability in XLink Omni-NFS Enterprise allows remote malicious users to execute arbitrary code via unspecified vectors, as demonstrated by vd_xlink2.pm, an "Omni-NFS Enterprise remote exploit." NOTE: this is probably a different vulnerability than CVE-20...
Xlink Technology Omni-nfs X Enterprise
2 EDB exploits
9.4
CVSSv2
CVE-2002-2268
Buffer overflow in Webster HTTP Server allows remote malicious users to execute arbitrary code via a long URL.
Netdave Webster Http Server
2 EDB exploits
1 Github repository
9.3
CVSSv2
CVE-2011-5170
Stack-based buffer overflow in Castillo Bueno Systems CCMPlayer 1.5 allows remote malicious users to execute arbitrary code via a long track name in an m3u playlist.
Castillobueno Ccmplayer 1.5
2 EDB exploits
4.6
CVSSv2
CVE-2002-1473
Multiple buffer overflows in lp subsystem for HP-UX 10.20 up to and including 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code.
Hp Hp-ux 10.20
Hp Hp-ux 11.00
Hp Hp-ux 11.11
2 EDB exploits
7.5
CVSSv2
CVE-2005-3757
The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote malicious users to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, su...
Google Mini Search Appliance
Google Search Appliance
2 EDB exploits
2.1
CVSSv2
CVE-2000-0402
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.
Microsoft Sql Server 7.0
2 EDB exploits
10
CVSSv2
CVE-2000-1209
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, a...
Compaq Insight Manager Xe 2.1b
Microsoft Data Engine 1.0
Compaq Insight Manager Xe 1.1
Compaq Insight Manager Xe 1.21
Compaq Insight Manager Xe 2.1
Compaq Insight Manager 7.0
Compaq Insight Manager Xe 2.1c
Microsoft Msde 2000
Compaq Insight Manager Xe 2.2
2 EDB exploits
9.3
CVSSv2
CVE-2009-3976
Buffer overflow in Labtam ProFTP 2.9 allows remote FTP servers to cause a denial of service (application crash) or execute arbitrary code via a long 220 reply (aka connection greeting or welcome message).
Labtam-inc Proftp 2.9
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »