Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
reflection vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2013-0422
Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote malicious users to execute arbitrary code by (1) using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiator object, then retrieving arbitrary...
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Canonical Ubuntu Linux 12.10
Opensuse Opensuse 12.2
1 EDB exploit
16 Github repositories
8 Articles
1000
VMScore
CVE-2012-4681
Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and previous versions allow remote malicious users to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.Cla...
Oracle Jdk 1.7.0
Oracle Jre 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Eus 6.3
1 EDB exploit
4 Github repositories
9 Articles
1000
VMScore
CVE-2011-5012
Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 prior to 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 prior to 15.4.1.327, Reflection Windows Client 7.2 SP1 ...
Attachmate Reflection 2011r1
Attachmate Reflection 2008r1 Sp1
Attachmate Reflection 2008r2
Attachmate Reflection 14.1
Attachmate Reflection 7.2
Attachmate Reflection 2008
1 EDB exploit
945
VMScore
CVE-2008-4037
Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka ...
Microsoft Windows Server 2003
Microsoft Windows Server 2008 -
Microsoft Windows Xp
Microsoft Windows Vista -
Microsoft Windows 2000 -
3 EDB exploits
935
VMScore
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Hp Java Sdk-rte 1.3
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 03
Sun Jdk 1.3.1 06
Sun Jdk 1.4.0 02
Sun Jdk 1.4.0 03
Sun Jdk 1.4.1
Sun Jdk 1.4.1 03
Sun Jdk 1.4.2 03
Sun Jdk 1.4
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.3.1 02
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
Sun Jre 1.3.1 09
Sun Jre 1.4.0 03
Sun Jre 1.4.1
Sun Jre 1.4.1 07
Sun Jre 1.4.2
Conectiva Linux 10.0
Sun Jdk 1.3.1 05
1 EDB exploit
894
VMScore
CVE-2021-21985
The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute com...
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Vcenter Server 7.0
Vmware Cloud Foundation
15 Github repositories
1 Article
890
VMScore
CVE-2014-0603
The rftpcom.dll ActiveX control in Attachmate Reflection FTP Client prior to 14.1.429 allows remote malicious users to cause a denial of service (memory corruption) and execute arbitrary code via vectors related to the (1) GetGlobalSettings or (2) GetSiteProperties3 methods, whic...
Attachmate Reflection Ftp Client
890
VMScore
CVE-2014-0604
Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client prior to 14.1.429 allows remote malicious users to execute arbitrary code via unspecified vectors to the StartLog method.
Attachmate Reflection Ftp Client
890
VMScore
CVE-2014-0605
Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client prior to 14.1.429 allows remote malicious users to execute arbitrary code via unspecified vectors to the SaveSettings method.
Attachmate Reflection Ftp Client
890
VMScore
CVE-2013-0428
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and previous versions, and OpenJDK 6 and 7, allows remote malicious users to affect confidentiality, integrity...
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Sun Jdk 1.6.0
Oracle Jdk 1.6.0
Sun Jre 1.5.0
Oracle Jre 1.5.0
Sun Jdk 1.5.0
Oracle Jdk 1.5.0
Sun Jre 1.4.2 26
Sun Jre 1.4.2 7
Sun Jre 1.4.2 27
Sun Jre 1.4.2 16
Sun Jre 1.4.2 24
Sun Jre 1.4.2 4
Sun Jre 1.4.2 2
Sun Jre 1.4.2 19
Sun Jre 1.4.2 25
Sun Jre 1.4.2 15
Sun Jre 1.4.2 17
Sun Jre 1.4.2 9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »