Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
biztalk server vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2003-0118
SQL injection vulnerability in the Document Tracking and Administration (DTA) website of Microsoft BizTalk Server 2000 and 2002 allows remote malicious users to execute operating system commands via a request to (1) rawdocdata.asp or (2) RawCustomSearchField.asp containing an emb...
Microsoft Biztalk Server 2000
Microsoft Biztalk Server 2002
2 EDB exploits
383
VMScore
CVE-2015-2475
Cross-site scripting (XSS) vulnerability in uddi/search/frames.aspx in the UDDI Services component in Microsoft Windows Server 2008 SP2 and BizTalk Server 2010, 2013 Gold, and 2013 R2 allows remote malicious users to inject arbitrary web script or HTML via the search parameter, a...
Microsoft Biztalk Server 2013
Microsoft Windows Server 2008
Microsoft Biztalk Server 2010
755
VMScore
CVE-2003-0117
Buffer overflow in the HTTP receiver function (BizTalkHTTPReceive.dll ISAPI) of Microsoft BizTalk Server 2002 allows malicious users to execute arbitrary code via a certain request to the HTTP receiver.
Microsoft Biztalk Server 2002
1 EDB exploit
828
VMScore
CVE-2007-0940
Unspecified vulnerability in the Cryptographic API Component Object Model Certificates ActiveX control (CAPICOM.dll) in Microsoft CAPICOM and BizTalk Server 2004 SP1 and SP2 allows remote malicious users to execute arbitrary code via unspecified vectors, aka the "CAPICOM.Cer...
Microsoft Biztalk Server 2004
Microsoft Capicom
828
VMScore
CVE-2007-1201
Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote malicious users to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerabilit...
Microsoft Biztalk Server 2000
Microsoft Biztalk Server 2002
Microsoft Office 2000
Microsoft Office Xp
Microsoft Visual Studio .net 2002
Microsoft Visual Studio .net 2003
Microsoft Commerce Server 2000
Microsoft Internet Security And Acceleration Server 2000
937
VMScore
CVE-2012-0158
The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2...
Microsoft Office 2010
Microsoft Office 2003
Microsoft Office Web Components 2003
Microsoft Office 2007
Microsoft Sql Server 2000
Microsoft Sql Server 2008
Microsoft Sql Server 2005
Microsoft Biztalk Server 2002
Microsoft Commerce Server 2002
Microsoft Commerce Server 2007
Microsoft Commerce Server 2009
Microsoft Visual Foxpro 8.0
Microsoft Visual Foxpro 9.0
Microsoft Visual Basic 6.0
1 EDB exploit
7 Github repositories
44 Articles
828
VMScore
CVE-2009-2496
Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Accelerati...
Microsoft Office Web Components Xp
Microsoft Office Web Components 2003
Microsoft Visual Studio .net 2003
Microsoft Office -
Microsoft Internet Security And Acceleration Server 2004
Microsoft Office 2003
Microsoft Office Xp
Microsoft Office Web Components 2000
Microsoft Internet Security And Acceleration Server 2006
Microsoft Biztalk Server 2002
1 Article
935
VMScore
CVE-2009-1534
Buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2000 Web Components SP3, Office XP Web Components SP3, BizTalk Server 2002, and Visual Studio .NET 2003 SP1 allows remote malicious users to execute arbitrary code via crafted property...
Microsoft Isa Server 2004
Microsoft Office 2003
Microsoft Office Xp
Microsoft Isa Server 2006
Microsoft Office Web Components 2003
Microsoft Office Web Components 2000
Microsoft Office Web Components Xp
Microsoft Office -
1 EDB exploit
828
VMScore
CVE-2006-4695
Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote malicious users to execute arbitrary code via a crafted URL, aka "Office Web Components URL Parsing Vulnerability."
Microsoft Office Web Components 2000
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started