Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vista vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-3033
Cross-site scripting (XSS) vulnerability in Windows Vista Feed Headlines Gadget (aka Sidebar RSS Feeds Gadget) in Windows Vista allows user-assisted remote malicious users to execute arbitrary code via an RSS feed with crafted HTML attributes, which are not properly removed and a...
Microsoft Windows Vista
7.8
CVSSv2
CVE-2007-3038
The Teredo interface in Microsoft Windows Vista and Vista x64 Edition does not properly handle certain network traffic, which allows remote malicious users to bypass firewall blocking rules and obtain sensitive information via crafted IPv6 traffic, aka "Windows Vista Firewal...
Microsoft Windows Vista
5
CVSSv2
CVE-2007-1527
The LLTD Mapper in Microsoft Windows Vista does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid IP address for the local network, which allows remote malicious users to trick users into communicating with an external host by sending...
Microsoft Windows Vista
5
CVSSv2
CVE-2007-1530
The LLTD Mapper in Microsoft Windows Vista does not properly gather responses to EMIT packets, which allows remote malicious users to cause a denial of service (mapping failure) by omitting an ACK response, which triggers an XML syntax error.
Microsoft Windows Vista
5
CVSSv2
CVE-2007-1533
The Teredo implementation in Microsoft Windows Vista uses the same nonce for communication with different UDP ports within a solicitation session, which makes it easier for remote malicious users to spoof the nonce through brute force attacks.
Microsoft Windows Vista
9.3
CVSSv2
CVE-2007-1658
Windows Mail in Microsoft Windows Vista might allow user-assisted remote malicious users to execute certain programs via a link to a (1) local file or (2) UNC share pathname in which there is a directory with the same base name as an executable program at the same level, as demon...
Microsoft Windows Vista
1 EDB exploit
4.3
CVSSv2
CVE-2014-0811
Cross-site scripting (XSS) vulnerability in Blackboard Vista/CE 8.0 SP6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Blackboard Vista\\/ce
9.3
CVSSv2
CVE-2008-0951
Microsoft Windows Vista does not properly enforce the NoDriveTypeAutoRun registry value, which allows user-assisted remote attackers, and possibly physically proximate attackers, to execute arbitrary code by inserting a (1) CD-ROM device or (2) U3-enabled USB device containing a ...
Microsoft Windows Vista
1.9
CVSSv2
CVE-2008-3893
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this ...
Microsoft Windows Vista
6.9
CVSSv2
CVE-2009-1922
The Message Queuing (aka MSMQ) service for Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP2, and Vista Gold does not properly validate unspecified IOCTL request data from user mode before passing this data to kernel mode, which allows local users to gain privileges via a craft...
Microsoft Windows 2000 -
Microsoft Windows Vista
Microsoft Windows Vista -
Microsoft Windows Xp -
Microsoft Windows Server 2003
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »