Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nicob vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0927
dhost.exe in Novell eDirectory 8.7.3 before sp10 and 8.8.2 allows remote malicious users to cause a denial of service (CPU consumption) via an HTTP request with (1) multiple Connection headers or (2) a Connection header with multiple comma-separated values. NOTE: this might be si...
Microsoft Windows-nt 2000
Microsoft Windows-nt 2003
1 EDB exploit
NA
CVE-2006-5784
Unspecified vulnerability in enserver.exe in SAP Web Application Server 6.40 before patch 136 and 7.00 before patch 66 allows remote malicious users to read arbitrary files via crafted data on a "3200+SYSNR" TCP port, as demonstrated by port 3201. NOTE: this issue can b...
Sap Sap Web Application Server 6.40
Sap Sap Web Application Server 7.00
1 EDB exploit
NA
CVE-2005-1470
Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3) ISUP, (4) SMB, or (5) Bittorrent dissectors in Ethereal prior to 0.10.11 allow remote malicious users to cause a denial of service (segmentation fault) via unknown vectors.
Ethereal Group Ethereal 0.10.1
Ethereal Group Ethereal 0.8
Ethereal Group Ethereal 0.9.2
Ethereal Group Ethereal 0.9.6
Ethereal Group Ethereal 0.10.10
Ethereal Group Ethereal 0.9.5
Ethereal Group Ethereal 0.8.19
Ethereal Group Ethereal 0.10.2
Ethereal Group Ethereal 0.8.18
Ethereal Group Ethereal 0.9.14
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.10
Ethereal Group Ethereal 0.9.8
Ethereal Group Ethereal 0.10.3
Ethereal Group Ethereal 0.10.4
Ethereal Group Ethereal 0.10.7
Ethereal Group Ethereal 0.9.16
Ethereal Group Ethereal 0.8.13
Ethereal Group Ethereal 0.10.5
Ethereal Group Ethereal 0.8.15
Ethereal Group Ethereal 0.9.3
Ethereal Group Ethereal 0.10
1 EDB exploit
NA
CVE-2006-0522
SQL injection vulnerability in the Authentication Servlet in Symantec Sygate Management Server (SMS) version 4.1 build 1417 and previous versions allows remote malicious users to execute arbitrary SQL commands and bypass authentication via unknown attack vectors related to a URL.
Symantec Sygate Management Server 4.1 Ga Build 1258 Japanese
Symantec Sygate Management Server 4.1 Mr1 Build 1351 Chinese
Symantec Sygate Management Server 3.5 Mr 3 Build 894 English
Symantec Sygate Management Server 4.0 Mr 1 Build 1104 English
Symantec Sygate Management Server
1 EDB exploit
NA
CVE-2009-4499
SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server prior to 1.6.8 allows remote malicious users to execute arbitrary SQL commands via a crafted request, possibly related to the send_history_last_id function in zabbix_serve...
Zabbix Zabbix 1.6.6
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.4.2
Zabbix Zabbix 1.1.5
Zabbix Zabbix 1.1.4
Zabbix Zabbix
Zabbix Zabbix 1.1.2
Zabbix Zabbix 1.4.4
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.4.6
1 EDB exploit
NA
CVE-2009-4501
The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server prior to 1.6.8 allows remote malicious users to cause a denial of service (crash) via a request that lacks expected separators, which triggers a NULL pointer dereference, as demonstrated using the Command ke...
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.4.6
Zabbix Zabbix 1.4.4
Zabbix Zabbix 1.6.6
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.4.2
Zabbix Zabbix 1.1.5
Zabbix Zabbix
Zabbix Zabbix 1.1.4
Zabbix Zabbix 1.1.2
1 EDB exploit
NA
CVE-2009-4502
The NET_TCP_LISTEN function in net.c in Zabbix Agent prior to 1.6.7, when running on FreeBSD or Solaris, allows remote malicious users to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this ...
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.1.5
Zabbix Zabbix 1.1.4
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.1.2
Zabbix Zabbix
Zabbix Zabbix 1.4.6
Zabbix Zabbix 1.4.4
Zabbix Zabbix 1.4.2
2 EDB exploits
NA
CVE-2009-4498
The node_process_command function in Zabbix Server prior to 1.8 allows remote malicious users to execute arbitrary commands via a crafted request.
Zabbix Zabbix 1.1.2
Zabbix Zabbix 1.6.6
Zabbix Zabbix 1.7
Zabbix Zabbix 1.1.4
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.7.2
Zabbix Zabbix 1.7.1
Zabbix Zabbix 1.4.2
Zabbix Zabbix 1.1.5
Zabbix Zabbix
Zabbix Zabbix 1.7.3
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.6.7
Zabbix Zabbix 1.6.8
2 EDB exploits
NA
CVE-2007-0774
Stack-based buffer overflow in the map_uri_to_worker function (native/common/jk_uri_worker_map.c) in mod_jk.so for Apache Tomcat JK Web Server Connector 1.2.19 and 1.2.20, as used in Tomcat 4.1.34 and 5.5.20, allows remote malicious users to execute arbitrary code via a long URL ...
Apache Tomcat Jk Web Server Connector 1.2.20
Apache Tomcat Jk Web Server Connector 1.2.19
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started