Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jon oberheide vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2009-0692
Stack-based buffer overflow in the script_write_params method in client/dhclient.c in ISC DHCP dhclient 4.1 prior to 4.1.0p1, 4.0 prior to 4.0.1p1, 3.1 prior to 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option.
Isc Dhcp 3.0
Isc Dhcp 3.1
Isc Dhcp 2.0
Isc Dhcp 4.1.0
Isc Dhcp 4.0
1 EDB exploit
731
VMScore
CVE-2010-2959
Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel prior to 2.6.27.53, 2.6.32.x prior to 2.6.32.21, 2.6.34.x prior to 2.6.34.6, and 2.6.35.x prior to 2.6.35.4 allows malicious users to execute arbitrary code or cause a denial...
Linux Linux Kernel
Fedoraproject Fedora 12
Debian Debian Linux 5.0
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Opensuse Opensuse 11.3
Suse Linux Enterprise High Availability Extension 11
Suse Linux Enterprise Real Time 11
1 EDB exploit
21 Github repositories
665
VMScore
CVE-2010-3437
Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel prior to 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) vi...
Linux Linux Kernel 2.6.36
Linux Linux Kernel
Suse Linux Enterprise Server 10
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 9
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Real Time Extension 11
Debian Debian Linux 5.0
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
1 EDB exploit
215
VMScore
CVE-2008-3834
The dbus_signature_validate function in the D-bus library (libdbus) prior to 1.2.4 allows remote malicious users to cause a denial of service (application abort) via a message containing a malformed signature, which triggers a failed assertion error.
Freedesktop Dbus 1.1.1
Freedesktop Dbus1.1.0
Freedesktop Dbus 0.62
Freedesktop Dbus 0.61
Freedesktop Dbus 0.35
Freedesktop Dbus 0.34
Freedesktop Dbus 0.33
Freedesktop Dbus 0.22
Freedesktop Dbus 0.21
Freedesktop Dbus 0.8
Freedesktop Dbus 0.7
Freedesktop Dbus 1.0.2
Freedesktop Dbus1.0 Rc1
Freedesktop Dbus 0.92
Freedesktop Dbus 0.36.1
Freedesktop Dbus 0.36
Freedesktop Dbus 0.23.3
Freedesktop Dbus 0.23.2
Freedesktop Dbus 0.12
Freedesktop Dbus 0.11
Freedesktop Dbus 0.4
Freedesktop Dbus 0.3
1 EDB exploit
475
VMScore
CVE-2008-4113
The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel prior to 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel ...
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.24.7
Linux Linux Kernel 2.6.23.13
Linux Linux Kernel 2.6.24.2
Linux Linux Kernel 2.4.36.6
Linux Linux Kernel 2.6.22.21
Linux Linux Kernel 2.6.25.12
Linux Linux Kernel 2.6.25.5
Linux Linux Kernel 2.6.23.8
Linux Linux Kernel 2.6.25
Linux Linux Kernel 2.6.22.12
Linux Linux Kernel 2.6.25.8
Linux Linux Kernel 2.6.21.6
Linux Linux Kernel 2.4.36.2
Linux Linux Kernel 2.6.23.16
Linux Linux Kernel 2.6.24.1
Linux Linux Kernel 2.6.25.6
Linux Linux Kernel 2.6.22
1 EDB exploit
495
VMScore
CVE-2008-5079
net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and previous versions allows local users to cause a denial of service (kernel infinite loop) by making two calls to svc_listen for the same socket, and then reading a /proc/net/atm/*vc file, related to corruption of ...
Linux Linux Kernel 2.6.23.15
Linux Linux Kernel 2.6.23.17
Linux Linux Kernel 2.6.20.21
Linux Linux Kernel 2.6.23.8
Linux Linux Kernel 2.6.19.5
Linux Linux Kernel 2.6.19.6
Linux Linux Kernel 2.4.36.5
Linux Linux Kernel 2.4.36.1
Linux Linux Kernel 2.6.25.17
Linux Linux Kernel 2.6.22 Rc7
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.13
Linux Linux Kernel 2.4.36.6
Linux Linux Kernel 2.6.22.1
Linux Linux Kernel 2.6.25.6
Linux Linux Kernel 2.6.25.5
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.25.12
Linux Linux Kernel 2.6.24.2
Linux Linux Kernel 2.6.24.5
Linux Linux Kernel 2.6.25
Linux Linux Kernel 2.6.22.18
1 EDB exploit
505
VMScore
CVE-2008-5081
The originates_from_local_legacy_unicast_socket function (avahi-core/server.c) in avahi-daemon in Avahi prior to 0.6.24 allows remote malicious users to cause a denial of service (crash) via a crafted mDNS packet with a source port of 0, which triggers an assertion failure.
Avahi Avahi 0.6.16
Avahi Avahi 0.6.15
Avahi Avahi 0.6.7
Avahi Avahi 0.6.6
Avahi Avahi 0.5.1
Avahi Avahi 0.5
Avahi Avahi 0.6.20
Avahi Avahi 0.6.19
Avahi Avahi 0.6.12
Avahi Avahi 0.6.11
Avahi Avahi 0.6.10
Avahi Avahi 0.6.3
Avahi Avahi 0.6.2
Avahi Avahi 0.2
Avahi Avahi 0.1
Avahi Avahi 0.6.22
Avahi Avahi 0.6.21
Avahi Avahi 0.6.14
Avahi Avahi 0.6.13
Avahi Avahi 0.6.5
Avahi Avahi 0.6.4
Avahi Avahi 0.4
1 EDB exploit
695
VMScore
CVE-2010-4347
The ACPI subsystem in the Linux kernel prior to 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which allows local users to gain privileges by placing a custom ACPI method in the ACPI interpreter tables, related to the acpi_debugfs_init function in drivers/acpi...
Linux Linux Kernel
Opensuse Opensuse 11.3
Suse Linux Enterprise Real Time Extension 11
1 EDB exploit
625
VMScore
CVE-2009-0360
Russ Allbery pam-krb5 prior to 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use, which allows local users to gain privileges by pointing an environment variable to a modified Kerberos configuration file, and then launching...
Eyrie Pam-krb5 3.8
Eyrie Pam-krb5 3.7
Eyrie Pam-krb5 3.0
Eyrie Pam-krb5 2.6
Eyrie Pam-krb5
Eyrie Pam-krb5 3.11
Eyrie Pam-krb5 3.4
Eyrie Pam-krb5 3.3
Eyrie Pam-krb5 2.3
Eyrie Pam-krb5 2.2
Eyrie Pam-krb5 3.10
Eyrie Pam-krb5 3.9
Eyrie Pam-krb5 3.2
Eyrie Pam-krb5 3.1
Eyrie Pam-krb5 2.1
Eyrie Pam-krb5 2.0
Eyrie Pam-krb5 3.6
Eyrie Pam-krb5 3.5
Eyrie Pam-krb5 2.5
Eyrie Pam-krb5 2.4
1 EDB exploit
695
VMScore
CVE-2008-5377
pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pstopdf.log temporary file, a different vulnerability than CVE-2001-1333.
Apple Cups 1.3.8
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »