Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windows vista vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-1535
Microsoft Windows Vista establishes a Teredo address without user action upon connection to the Internet, contrary to documentation that Teredo is inactive without user action, which increases the attack surface and allows remote malicious users to communicate via Teredo.
Microsoft Windows Vista
7.6
CVSSv2
CVE-2007-0675
A certain ActiveX control in sapi.dll (aka the Speech API) in Speech Components in Microsoft Windows Vista, when the Speech Recognition feature is enabled, allows user-assisted remote malicious users to delete arbitrary files, and conduct other unauthorized activities, via a web ...
Microsoft Windows Vista
4.3
CVSSv2
CVE-2007-3033
Cross-site scripting (XSS) vulnerability in Windows Vista Feed Headlines Gadget (aka Sidebar RSS Feeds Gadget) in Windows Vista allows user-assisted remote malicious users to execute arbitrary code via an RSS feed with crafted HTML attributes, which are not properly removed and a...
Microsoft Windows Vista
5
CVSSv2
CVE-2007-1527
The LLTD Mapper in Microsoft Windows Vista does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid IP address for the local network, which allows remote malicious users to trick users into communicating with an external host by sending...
Microsoft Windows Vista
6.4
CVSSv2
CVE-2007-1532
The neighbor discovery implementation in Microsoft Windows Vista allows remote malicious users to conduct a redirect attack by (1) responding to queries by sending spoofed Neighbor Advertisements or (2) blindly sending Neighbor Advertisements.
Microsoft Windows Vista
9.3
CVSSv2
CVE-2007-1658
Windows Mail in Microsoft Windows Vista might allow user-assisted remote malicious users to execute certain programs via a link to a (1) local file or (2) UNC share pathname in which there is a directory with the same base name as an executable program at the same level, as demon...
Microsoft Windows Vista
1 EDB exploit
9.3
CVSSv2
CVE-2008-0951
Microsoft Windows Vista does not properly enforce the NoDriveTypeAutoRun registry value, which allows user-assisted remote attackers, and possibly physically proximate attackers, to execute arbitrary code by inserting a (1) CD-ROM device or (2) U3-enabled USB device containing a ...
Microsoft Windows Vista
1.9
CVSSv2
CVE-2008-3893
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this ...
Microsoft Windows Vista
4.3
CVSSv2
CVE-2007-4247
Windows Calendar on Microsoft Windows Vista allows remote malicious users to cause a denial of service (NULL dereference and persistent application crash) via a malformed ICS file.
Microsoft Windows Vista
7.1
CVSSv2
CVE-2007-1763
The ATI kernel driver (atikmdag.sys) in Microsoft Windows Vista allows user-assisted remote malicious users to cause a denial of service (crash) via a crafted JPG image, as demonstrated by a slideshow, possibly due to a buffer overflow.
Microsoft Windows Vista
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »