Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
idefense vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-10303
A use-after-free in Foxit Reader prior to 9.1 and PhantomPDF prior to 9.1 allows remote malicious users to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
6.8
CVSSv2
CVE-2018-10302
A use-after-free in Foxit Reader prior to 9.1 and PhantomPDF prior to 9.1 allows remote malicious users to execute arbitrary code, aka iDefense ID V-jyb51g3mv9.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
5.8
CVSSv2
CVE-2009-3860
Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote malicious users to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
Idefense Comraider
1 EDB exploit
9.3
CVSSv2
CVE-2009-1868
Heap-based buffer overflow in Adobe Flash Player prior to 9.0.246.0 and 10.x prior to 10.0.32.18, and Adobe AIR prior to 1.5.2, allows malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors involving URL parsing...
Adobe Flash Player 10.0.0.584
Adobe Flash Player 9.0.28
Adobe Flash Player 9.0.20.0
Adobe Flash Player 7.0
Adobe Flash Player 7.0.1
Adobe Flash Player 8.0.34.0
Adobe Flash Player 8.0.35.0
Adobe Flash Player 7.1
Adobe Flash Player 9.0.48.0
Adobe Flash Player 9.0.47.0
Adobe Flash Player 9.0.45.0
Adobe Flash Player 9.0.124.0
Adobe Flash Player 9.0.115.0
Adobe Flash Player 7.0.69.0
Adobe Flash Player 7.1.1
Adobe Flash Player 8.0
Adobe Flash Player 7.0.25
Adobe Air 1.5
Adobe Air 1.1
Adobe Flash Player 9.0.31.0
Adobe Flash Player 9.0.28.0
Adobe Flash Player 9.0.114.0
1 EDB exploit
9.3
CVSSv2
CVE-2007-5659
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and previous versions allow remote malicious users to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655.
Adobe Acrobat
Adobe Acrobat Reader
2 EDB exploits
2 Articles
9.3
CVSSv2
CVE-2007-5663
Adobe Reader and Acrobat 8.1.1 and previous versions allows remote malicious users to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655.
Adobe Acrobat
Adobe Acrobat Reader
1.9
CVSSv2
CVE-2007-4308
The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel prior to 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges.
Adaptec Aacraid Controller
4.3
CVSSv2
CVE-2007-3843
The Linux kernel prior to 2.6.23-rc1 checks the wrong global variable for the CIFS sec mount option, which might allow remote malicious users to spoof CIFS network traffic that the client configured for security signatures, as demonstrated by lack of signing despite sec=ntlmv2i i...
Linux Linux Kernel
4.6
CVSSv2
CVE-2007-3105
Stack-based buffer overflow in the random number generator (RNG) implementation in the Linux kernel prior to 2.6.22 might allow local root users to cause a denial of service or gain privileges by setting the default wakeup threshold to a value greater than the output pool size, w...
Linux Linux Kernel
2.1
CVSSv2
CVE-2007-2875
Integer underflow in the cpuset_tasks_read function in the Linux kernel prior to 2.6.20.13, and 2.6.21.x prior to 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memory contents by using a large offset when reading the /dev/cpuset/tasks file.
Linux Linux Kernel
Debian Debian Linux 3.1
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 6.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »