Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drew vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-1881
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote malicious users to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.
Videolan Vlc 0.8.6e
2 EDB exploits
6.8
CVSSv2
CVE-2008-3794
Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote malicious users to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer ove...
Videolan Vlc Media Player 0.8.6i
1 EDB exploit
9.3
CVSSv2
CVE-2008-5032
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 up to and including 0.9.5 might allow user-assisted malicious users to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally includ...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.7.2
Videolan Vlc Media Player 0.8.6g
Videolan Vlc Media Player 0.5.0
Videolan Vlc Media Player 0.8.4a
Videolan Vlc Media Player 0.8.0
Videolan Vlc Media Player 0.8.4
Videolan Vlc Media Player 0.7.1a
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.8.5
Videolan Vlc Media Player 0.6.2
Videolan Vlc Media Player 0.8.6h
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6c
Videolan Vlc Media Player 0.8.6i
Videolan Vlc Media Player 0.7.0
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.5.3
Videolan Vlc Media Player 0.8.6a
Videolan Vlc Media Player 0.9.5
Videolan Vlc Media Player 0.6.0
1 EDB exploit
9.3
CVSSv2
CVE-2008-4686
Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote malicious users to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.2
Videolan Vlc Media Player 0.9.3
2 EDB exploits
5.8
CVSSv2
CVE-2013-0772
The RasterImage::DrawFrameTo function in Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 allows remote malicious users to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application cras...
Mozilla Firefox
Mozilla Seamonkey
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Redhat Enterprise Linux Aus 5.9
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Eus 5.9
Redhat Enterprise Linux Eus 6.3
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Workstation 6.0
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
4.3
CVSSv2
CVE-2013-0792
Mozilla Firefox prior to 20.0 and SeaMonkey prior to 2.17, when gfx.color_management.enablev4 is used, do not properly handle color profiles during PNG rendering, which allows remote malicious users to obtain sensitive information from process memory or cause a denial of service ...
Mozilla Firefox 19.0.1
Mozilla Firefox
Mozilla Firefox 19.0
Mozilla Seamonkey 2.16
Mozilla Seamonkey 2.16.1
Mozilla Seamonkey
Mozilla Seamonkey 2.16.2
Mozilla Seamonkey 2.15
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.0.11
Mozilla Seamonkey 2.0.13
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.3.1
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.2
Mozilla Seamonkey 2.17
Mozilla Seamonkey 2.0.2
Mozilla Seamonkey 2.0.1
9.3
CVSSv2
CVE-2013-0777
Use-after-free vulnerability in the nsDisplayBoxShadowOuter::Paint function in Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption) via...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Thunderbird Esr
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
9.3
CVSSv2
CVE-2013-0778
The ClusterIterator::NextCluster function in Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds read) via unspecified vectors.
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Thunderbird Esr
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
9.3
CVSSv2
CVE-2013-0779
The nsCodingStateMachine::NextState function in Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds read) via unspecified vectors.
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Thunderbird Esr
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
9.3
CVSSv2
CVE-2013-0781
Use-after-free vulnerability in the nsPrintEngine::CommonPrint function in Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption) via uns...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Thunderbird Esr
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »