Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kevin finisterre vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-3529
Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 prior to 2.7.0 allows context-dependent malicious users to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.
Xmlsoft Libxml2
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Apple Mac Os X 10.5.7
Apple Mac Os X
Apple Safari
Apple Iphone Os
1 EDB exploit
10
CVSSv2
CVE-2006-3838
Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) prior to 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and ...
Eiqnetworks Enterprise Security Analyzer
6 EDB exploits
10
CVSSv2
CVE-2005-2715
Format string vulnerability in the Java user interface service (bpjava-msvc) daemon for VERITAS NetBackup Data and Business Center 4.5FP and 4.5MP, and NetBackup Enterprise/Server/Client 5.0, 5.1, and 6.0, allows remote malicious users to execute arbitrary code via the COMMAND_LO...
Symantec Veritas Netbackup Data And Business Center 4.5fp
Symantec Veritas Netbackup Data And Business Center 4.5mp
Symantec Veritas Netbackup Enterprise Server Client 5.0
Symantec Veritas Netbackup Enterprise Server Client 5.1
Symantec Veritas Netbackup Enterprise Server Client 6.0
3 EDB exploits
10
CVSSv2
CVE-2005-2277
Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in the filename argument of a PUT command.
Nokia Affix 3.2.0
Nokia Affix 2.1.2
1 EDB exploit
9.3
CVSSv2
CVE-2009-3867
Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x prior to 1.3.1_27, and SDK and JRE 1.4.x prior to 1.4.2_24 allows remote malicious users to execute arbitrary c...
Sun Jdk 1.6.0
Sun Jre 1.6.0
Sun Jdk 1.5.0
Sun Jre 1.5.0
Sun Sdk 1.4.2 6
Sun Sdk 1.4.2 9
Sun Sdk 1.4.2 8
Sun Sdk 1.4.2 11
Sun Sdk 1.4.2 14
Sun Sdk 1.4.2 03
Sun Sdk 1.4.2 12
Sun Sdk 1.4.2 3
Sun Sdk 1.4.2 5
Sun Sdk 1.4.2 20
Sun Sdk 1.4.2 17
Sun Sdk 1.4.2 2
Sun Sdk 1.4.2 13
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 09
Sun Jre 1.4.2 12
Sun Jre 1.4.2 13
Sun Jre 1.4.2 6
3 EDB exploits
7 Articles
9
CVSSv2
CVE-2007-5926
OpenBase 10.0.5 and previous versions allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup, (2) OEMLicenseInstall, and possibly other stored procedures.
Openbase International Ltd Openbase
1 EDB exploit
7.6
CVSSv2
CVE-2008-2639
Stack-based buffer overflow in the ODBC server service in Citect CitectSCADA 6 and 7, and CitectFacilities 7, allows remote malicious users to execute arbitrary code via a long string in the second application packet in a TCP session on port 20222.
Citect Citectfacilities 7
Citect Citectscada 6
Citect Citectscada 7
2 EDB exploits
7.5
CVSSv2
CVE-2008-0175
Unrestricted file upload vulnerability in GE Fanuc Proficy Real-Time Information Portal 2.6 and previous versions allows remote malicious users to execute arbitrary code by uploading a file with an executable extension to the main virtual directory.
Ge Fanuc Proficy Real-time Information Portal
1 EDB exploit
7.5
CVSSv2
CVE-2006-6488
Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control (DlgWrapper.dll) prior to 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote malicious users to execute arbitrary code via a long (1) FileName ...
Iconics Dialog Wrapper Module Activex Control
1 EDB exploit
7.5
CVSSv2
CVE-2005-3523
Format string vulnerability in friendsd2 in GpsDrive allows remote malicious users to execute arbitrary code via the dir (direction) field.
Gpsdrive Gpsdrive
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »