Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kingcope vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4146
The _rtld function in the Run-Time Link-Editor (rtld) in libexec/rtld-elf/rtld.c in FreeBSD 7.1, 7.2, and 8.0 does not clear the LD_PRELOAD environment variable, which allows local users to gain privileges by executing a setuid or setguid program with a modified LD_PRELOAD variab...
Freebsd Freebsd 7.1
Freebsd Freebsd 7.2
Freebsd Freebsd 8.0
1 EDB exploit
NA
CVE-2009-4147
The _rtld function in the Run-Time Link-Editor (rtld) in libexec/rtld-elf/rtld.c in FreeBSD 7.1 and 8.0 does not clear the (1) LD_LIBMAP, (2) LD_LIBRARY_PATH, (3) LD_LIBMAP_DISABLE, (4) LD_DEBUG, and (5) LD_ELF_HINTS_PATH environment variables, which allows local users to gain pr...
Freebsd Freebsd 7.1
Freebsd Freebsd 8.0
1 EDB exploit
NA
CVE-2009-1676
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-1535. Reason: This candidate is a duplicate of CVE-2009-1535. Notes: All CVE users should reference CVE-2009-1535 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
1 Github repository
NA
CVE-2005-3524
Buffer overflow in the SSL-ready version of linux-ftpd (linux-ftpd-ssl) 0.17 allows remote malicious users to execute arbitrary code by creating a long directory name, then executing the XPWD command.
Linux-ftpd-ssl Linux-ftpd-ssl 0.17
1 EDB exploit
NA
CVE-2012-6066
freeSSHd.exe in freeSSHd up to and including 1.2.6 allows remote malicious users to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c.
Freesshd Freesshd
Freesshd Freesshd 1.2.1
Freesshd Freesshd 1.2.2
3 EDB exploits
1 Github repository
NA
CVE-2009-0880
Directory traversal vulnerability in the CIM server in IBM Director prior to 5.20.3 Service Update 2 on Windows allows remote malicious users to load and execute arbitrary local DLL code via a .. (dot dot) in a /CIMListener/ URI in an M-POST request.
Ibm Director 5.20.2
Ibm Director 5.20.1
Ibm Director 4.12
Ibm Director 4.10
Ibm Director 5.10.1
Ibm Director 5.10.0
Ibm Director 4.22
Ibm Director 5.10.2
Ibm Director 4.11
Ibm Director 4.21
Ibm Director 4.20
Ibm Director 5.20.0
Ibm Director 5.10.3
Ibm Director 3.1.1
Ibm Director
2 EDB exploits
NA
CVE-2009-1535
The WebDAV extension in Microsoft Internet Information Services (IIS) 5.1 and 6.0 allows remote malicious users to bypass URI-based protection mechanisms, and list folders or read, create, or modify files, via a %c0%af (Unicode / character) at an arbitrary position in the URI, as...
Microsoft Internet Information Services 5.1
Microsoft Internet Information Services 6.0
2 EDB exploits
NA
CVE-2005-4411
Buffer overflow in Mercury Mail Transport System 4.01b allows remote malicious users to execute arbitrary code via a long request to TCP port 105.
David Harris Mercury Mail Transport System 4.01b
2 EDB exploits
NA
CVE-2006-6652
Buffer overflow in the glob implementation (glob.c) in libc in NetBSD-current prior to 20050914, NetBSD 2.* and 3.* prior to 20061203, and Apple Mac OS X prior to 2007-004, as used by the FTP daemon and tnftpd, allows remote authenticated users to execute arbitrary code via a lon...
Apple Mac Os X 10.0.2
Apple Mac Os X 10.0.3
Apple Mac Os X 10.0.4
Apple Mac Os X 10.1
Apple Mac Os X 10.2.8
Apple Mac Os X 10.3
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.2
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.7
Apple Mac Os X 10.4.8
Apple Mac Os X 10.4.9
Apple Mac Os X 10.1.5
Apple Mac Os X 10.2
Apple Mac Os X 10.2.1
Apple Mac Os X 10.2.2
Apple Mac Os X 10.2.3
Apple Mac Os X 10.3.7
Apple Mac Os X 10.3.8
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4
Apple Mac Os X 10.0
2 EDB exploits
NA
CVE-2008-3257
Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /....
Bea Weblogic Server 3.1.8
Bea Weblogic Server 4.5.1
Bea Weblogic Server 4.5.2
Bea Weblogic Server 5.1
Bea Weblogic Server 6.1
Bea Weblogic Server 7.0.0.1
Bea Weblogic Server 7.0
Bea Weblogic Server 8.1
Bea Weblogic Server 9.0
Bea Weblogic Server 9.1
Bea Weblogic Server 10.0
Bea Weblogic Server 6.0
Bea Weblogic Server 9.2
Bea Weblogic Server 4.0
Bea Weblogic Server 4.0.4
Bea Systems Apache Connector In Weblogic Server
Bea Weblogic Server 4.5
Bea Systems Weblogic Server 10.0 Mp1
Oracle Weblogic Server
2 EDB exploits
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »