Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
desktop vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4958
Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) prior to 4.20.983 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp...
Sun Secure Global Desktop 4.0
Sun Secure Global Desktop 3.42
NA
CVE-2013-1296
The Remote Desktop ActiveX control in mstscax.dll in Microsoft Remote Desktop Connection Client 6.1 and 7.0 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code via a web page that triggers access to a deleted object, and allow...
Microsoft Remote Desktop Connection 7.0
Microsoft Remote Desktop Connection 6.1
1 Article
NA
CVE-2003-1395
Buffer overflow in KaZaA Media Desktop 2.0 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.
Kazaa Kazaa Media Desktop 2.0
Kazaa Kazaa Media Desktop 2.0.2
NA
CVE-1999-1162
Vulnerability in passwd in SCO UNIX 4.0 and previous versions allows malicious users to cause a denial of service by preventing users from being able to log into the system.
Sco Open Desktop 2.0
Sco Unix
Sco Open Desktop 1.1
3.3
CVSSv3
CVE-2023-0463
The force offline MFA prompt setting is not respected when switching to offline mode in Devolutions Remote Desktop Manager 2022.3.29 to 2022.3.30 allows a user to save sensitive data on disk.
Devolutions Remote Desktop Manager 2022.3.29
Devolutions Remote Desktop Manager 2022.3.30
NA
CVE-2006-4959
Sun Secure Global Desktop (SSGD, aka Tarantella) prior to 4.3 allows remote malicious users to obtain sensitive information, including hostnames, versions, and settings details, via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalice...
Sun Secure Global Desktop 3.42
Sun Secure Global Desktop 4.0
9.8
CVSSv3
CVE-2018-5337
An issue exists in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: directory traversal in the SCRIPT_NAME field when modifying existing scripts.
Zohocorp Manageengine Desktop Central 10.0.124
Zohocorp Manageengine Desktop Central 10.0.184
9.8
CVSSv3
CVE-2018-5338
An issue exists in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: missing authentication/authorization for a database query mechanism.
Zohocorp Manageengine Desktop Central 10.0.184
Zohocorp Manageengine Desktop Central 10.0.124
9.8
CVSSv3
CVE-2018-5339
An issue exists in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: insufficient enforcement of database query type restrictions.
Zohocorp Manageengine Desktop Central 10.0.124
Zohocorp Manageengine Desktop Central 10.0.184
9.8
CVSSv3
CVE-2018-5341
An issue exists in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: a missing server-side check on the file type/extension when uploading and modifying scripts.
Zohocorp Manageengine Desktop Central 10.0.124
Zohocorp Manageengine Desktop Central 10.0.184
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »