Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
orb vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5645
Directory traversal vulnerability in the media server in Orb Networks Orb prior to 2.01.0022 allows remote malicious users to read arbitrary files via directory traversal sequences in an HTTP GET request.
Orb Networks Orb 2.01.0013
Orb Networks Orb 2.01.0008
Orb Networks Orb 2.0.1014
Orb Networks Orb
Orb Networks Orb 2.00.0930
Orb Networks Orb 2.00.0989
Orb Networks Orb 2.00.1014
Orb Networks Orb 2.00.1084
Orb Networks Orb 2.01.0015
NA
CVE-2008-5564
Unspecified vulnerability in the media server in Orb Networks Orb prior to 2.01.0025 allows remote malicious users to cause a denial of service (daemon crash) via a malformed HTTP request.
Orb Networks Orb 2.01.0015
Orb Networks Orb 2.01.0017
Orb Networks Orb
Orb Networks Orb 2.01.0008
Orb Networks Orb 2.01.0013
Orb Networks Orb 2.00.0989
Orb Networks Orb 2.00.0930
Orb Networks Orb 2.00.1014
Orb Networks Orb 2.00.1084
NA
CVE-2008-0070
Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote malicious users to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow.
Orb Networks Orb 2.0.1014
NA
CVE-2012-3155
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote malicious users to affect availability, related to CORBA ORB.
Oracle Glassfish Server 2.1.1
Oracle Glassfish Server 3.0.1
Oracle Glassfish Server 3.1.2
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
NA
CVE-2010-0688
Stack-based buffer overflow in Orbital Viewer 1.04 allows user-assisted remote malicious users to execute arbitrary code via a crafted (1) .orb or (2) .ov file.
Orbitals Orbital Viewer 1.04
3 EDB exploits
7.5
CVSSv3
CVE-2018-1683
IBM WebSphere Application Server Liberty could allow a remote malicious user to obtain sensitive information, caused by the failure to encrypt ORB communication. IBM X-Force ID: 145455.
Ibm Websphere Application Server
NA
CVE-2014-8310
The CMS CORBA listener in SAP BusinessObjects BI Edge 4.0 allows remote malicious users to cause a denial of service (server shutdown) via crafted OSCAFactory::Session ORB message.
Sap Businessobjects 4.0
NA
CVE-2010-0770
IBM WebSphere Application Server (WAS) 6.0 prior to 6.0.2.41, 6.1 prior to 6.1.0.31, and 7.0 prior to 7.0.0.9 allows remote authenticated users to cause a denial of service (ORB ListenerThread hang) by aborting an SSL handshake.
Ibm Websphere Application Server 6.0.2.37
Ibm Websphere Application Server 6.0.2.35
Ibm Websphere Application Server 6.0.2.21
Ibm Websphere Application Server 6.0.2.19
Ibm Websphere Application Server 6.0.2.3
Ibm Websphere Application Server 6.0.2.1
Ibm Websphere Application Server
Ibm Websphere Application Server 6.0.2.25
Ibm Websphere Application Server 6.0.2.23
Ibm Websphere Application Server 6.0.2.7
Ibm Websphere Application Server 6.0.2.5
Ibm Websphere Application Server 6.0.0.3
Ibm Websphere Application Server 6.0
Ibm Websphere Application Server 6.0.2.29
Ibm Websphere Application Server 6.0.2.27
Ibm Websphere Application Server 6.0.2.11
Ibm Websphere Application Server 6.0.2.9
Ibm Websphere Application Server 6.0.1.2
Ibm Websphere Application Server 6.0.0.2
Ibm Websphere Application Server 6.0.2.33
Ibm Websphere Application Server 6.0.2.31
Ibm Websphere Application Server 6.0.2.17
9.8
CVSSv3
CVE-2023-5763
In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote malicious users to load malicious code on the server via access to insecure ORB listeners.
Eclipse Glassfish
9.8
CVSSv3
CVE-2023-28462
A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 (Enterprise), 5.20.0 and newer (Enterprise), and 5.2020.1 and newer (Community), when Java 1.8u181 and previous versions is used, allows remote malicious users to load malicious code on the server once...
Payara Payara Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »