Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frank vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2020-11494
An issue exists in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 up to and including 5.6.2. It allows malicious users to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configuration lacks CONFIG_INIT...
Linux Linux Kernel
Opensuse Leap 15.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
NA
CVE-2008-5508
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 does not properly parse URLs with leading whitespace or control characters, which might allow remote malicious users to misrepresent URLs and simplif...
Mozilla Thunderbird
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 5.0
Debian Debian Linux 4.0
NA
CVE-2008-5503
The loadBindingDocument function in Mozilla Firefox 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 does not perform any security checks related to the same-domain policy, which allows remote malicious users to read or access data from ...
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.6
Mozilla Firefox 2.0.0.5
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 2.0.0.9
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1.9
Mozilla Thunderbird 2.0.0.16
Mozilla Thunderbird 2.0.0.17
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.1
Mozilla Thunderbird 2.0.0.4
Mozilla Thunderbird 2.0.0.0
Mozilla Seamonkey 1.0.7
NA
CVE-2014-7280
Cross-site scripting (XSS) vulnerability in the Web UI prior to 2.3.4 Build #85 for Tenable Nessus 5.x allows remote web servers to inject arbitrary web script or HTML via the server header.
Tenable Web Ui
1 EDB exploit
NA
CVE-2001-0468
Buffer overflow in FTPFS allows local users to gain root privileges via a long user name.
Ftpfs Ftpfs 0.1.1
1 EDB exploit
NA
CVE-1999-0718
IBM GINA, when used for OS/2 domain authentication of Windows NT users, allows local users to gain administrator privileges by changing the GroupMapping registry key.
Ibm Gina 1.0
1 EDB exploit
7.8
CVSSv3
CVE-2002-0653
Off-by-one buffer overflow in the ssl_compat_directive function, as called by the rewrite_command hook for mod_ssl Apache module 2.8.9 and previous versions, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries.
Modssl Mod Ssl
1 EDB exploit
NA
CVE-2002-2191
Lotus Domino 5.0.9a and previous versions, even when configured with the 'DominoNoBanner=1' option, allows remote malicious users to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the...
Lotus Domino 5.0.8
Lotus Domino 5.0.9
Lotus Domino 5.0.9a
1 EDB exploit
NA
CVE-2001-1501
The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote malicious users to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple...
Proftpd Project Proftpd 1.2.1
1 EDB exploit
NA
CVE-2009-4211
The U.S. Defense Information Systems Agency (DISA) Security Readiness Review (SRR) script for the Solaris x86 platform executes files in arbitrary directories as root for filenames equal to (1) java, (2) openssl, (3) php, (4) snort, (5) tshark, (6) vncserver, or (7) wireshark, wh...
Disa Srr For Solaris
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »