Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
msrc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1335
Microsoft Internet Explorer 7 and 8 on Windows XP and Vista allows remote malicious users to cause a denial of service (application hang) via a large document composed of unprintable characters, aka MSRC 9011jr.
Microsoft Internet Explorer 7
Microsoft Internet Explorer 8
1 EDB exploit
NA
CVE-2008-4787
Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote malicious users to spoof the address bar via a URL with a hostname containing many (Non-Blocking Space character) sequences, which are rendered as whitespace, aka MSRC ticket MSRC7899, a rel...
Microsoft Internet Explorer 6
1 EDB exploit
NA
CVE-2008-4788
Microsoft Internet Explorer 6 omits high-bit URL-encoded characters when displaying the address bar, which allows remote malicious users to spoof the address bar via a URL with a domain name that differs from an important domain name only in these characters, as demonstrated by u...
Microsoft Internet Explorer 6
NA
CVE-2008-5100
The strong name (SN) implementation in Microsoft .NET Framework 2.0.50727 relies on the digital signature Public Key Token embedded in the pathname of a DLL file instead of the digital signature of this file itself, which makes it easier for malicious users to bypass Global Assem...
Microsoft .net Framework 2.0.50727
NA
CVE-2015-0004
The User Profile Service (aka ProfSvc) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges by conduct...
Microsoft Windows Rt -
Microsoft Windows Server 2012 -
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Server 2003
Microsoft Windows Rt 8.1 -
Microsoft Windows Vista -
Microsoft Windows 8 -
Microsoft Windows Server 2012 R2
1 EDB exploit
NA
CVE-2013-1450
Microsoft Internet Explorer 8 and 9, when the Proxy Settings configuration has the same Proxy address and Port values in the HTTP and Secure rows, does not properly reuse TCP sessions to the proxy server, which allows remote malicious users to obtain sensitive information intende...
Microsoft Internet Explorer 8
Microsoft Internet Explorer 9
NA
CVE-2015-0002
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not verify that an impersonation token is...
Microsoft Windows Rt -
Microsoft Windows Server 2012 -
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Rt 8.1 -
Microsoft Windows 8 -
Microsoft Windows Server 2012 R2
1 EDB exploit
1 Github repository
NA
CVE-2015-0010
The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2,...
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Rt -
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 -
Microsoft Windows 7 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Vista -
Microsoft Windows 8 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2003 -
1 EDB exploit
8.2
CVSSv3
CVE-2020-15145
In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user may modify the existing `C:\ProgramData\ComposerSetup\bin\composer.bat` in ord...
Getcomposer Composer-setup
8.1
CVSSv3
CVE-2021-42306
An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential? on an Azure AD Application or Service Principal (which is not recommended). This vulnerability allows a use...
Microsoft Azure Migrate
Microsoft Azure Active Site Recovery
Microsoft Azure Automation
Microsoft Azure Active Directory
1 Github repository
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »