Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
internet security vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2017-17429
In K7 Antivirus Premium prior to 15.1.0.53, user-controlled input to the K7Sentry device is not sufficiently authenticated: a local user with a LOW integrity process can access a raw hard disk by sending a specific IOCTL.
K7computing Total Security
K7computing Antivirus
K7computing Internet Security
K7computing Ultimate Security
K7computing Endpoint
445
VMScore
CVE-2002-1695
Norton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote malicious users to modify the log file contents while Norton Internet Security is running.
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
Symantec Norton Internet Security 2001
215
VMScore
CVE-2010-5075
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW.
Avast\\! Avast\\! Internet Security 5.0
1 EDB exploit
725
VMScore
CVE-2014-9632
The TDI driver (avgtdix.sys) in AVG Internet Security prior to 2013.3495 Hot Fix 18 and 2015.x prior to 2015.5315 and Protection prior to 2015.5315 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x830020f8 IOCTL call.
Avg Protection
Avg Internet Security
1 EDB exploit
641
VMScore
CVE-2007-5047
Norton Internet Security 2008 15.0.0.60 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the NtOpenSection kernel SSDT hook. NO...
Symantec Norton Internet Security 2008 15.0.0.60
641
VMScore
CVE-2013-3947
Buffer overflow in MedCoreD.sys in AhnLab V3 Internet Security 8.0.7.5 (Build 1373) allows local users to gain privileges via a crafted 0xA3350014 IOCTL call.
Ahnlab V3 Internet Security 8.0.7.5
668
VMScore
CVE-2004-0364
The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet Security 2004 is marked safe for scripting, which allows remote malicious users to execute arbitrary programs via the LaunchURL method.
Symantec Norton Internet Security 2004
828
VMScore
CVE-2007-6060
AhnLab Antivirus 3 Internet Security 2008 Platinum appends data to a filename string at a location indicated by the "Filename length" field in a ZIP header, which allows remote malicious users to cause a denial of service (machine crash) and possibly execute arbitrary c...
Ahnlab V3 Internet Security 2008
435
VMScore
CVE-2003-1149
Cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003 6.0.4.34 allows remote malicious users to inject arbitrary web script or HTML via a URL to a blocked site, which is displayed on the blocked sites error page.
Symantec Norton Internet Security 2003 6.0.4.34
1 EDB exploit
641
VMScore
CVE-2019-19197
IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an malicious user to achieve privilege escalation, denial-of-service, and code execution via usermode because 0x9C402401 using METHOD_NEITHER results in a read primitive.
Kyrolsecuritylabs Kyrol Internet Security 9.0.6.9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »