CVE-2009-0686

The TrendMicro Activity Monitor Module (tmactmon.sys) 2.52.0.1002 in Trend Micro Internet Pro 2008 and 2009, and Security Pro 2008 and 2009, allows local users to gain privileges via a crafted IRP in a METHOD_NEITHER IOCTL request to \Device\tmactmon that overwrites memory.

Publication date: Wed, 01 Apr 2009 15:30:00 +0000

Cyber News related to CVE-2009-0686

CVE-2009-3403 - Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.4: JRE/JDK, 1.4.2, 5, and, and 6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this issue subsumes ...
12 years ago

CVE-2010-0079 - Multiple vulnerabilities in the JRockit component in BEA Product Suite R27.6.5 using JRE/JDK 1.4.2, 5, and 6 allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this CVE identifier overlaps ...
12 years ago

CVE-2009-0686 - The TrendMicro Activity Monitor Module (tmactmon.sys) 2.52.0.1002 in Trend Micro Internet Pro 2008 and 2009, and Security Pro 2008 and 2009, allows local users to gain privileges via a crafted IRP in a METHOD_NEITHER IOCTL request to \Device\tmactmon ...
6 years ago

CVE-2009-3239 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2139, CVE-2009-2140. Reason: This candidate is a duplicate of CVE-2009-2139 and CVE-2009-2140. Notes: All CVE users should reference CVE-2009-2139 and CVE-2009-2140 instead of ...
54 years ago Tenable.com

CVE-2009-4212 - Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly ...
4 years ago

CVE-2020-0683 - An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686. ...
2 years ago

CVE-2007-0686 - The Intel 2200BG 802.11 Wireless Mini-PCI driver 9.0.3.9 (w29n51.sys) allows remote attackers to cause a denial of service (system crash) via crafted disassociation packets, which triggers memory corruption of "internal kernel structures," a ...
7 years ago

CVE-2020-0686 - An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0683. ...
4 years ago

CVE-2019-0686 - An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0724. ...
4 years ago

CVE-2019-0724 - An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686. ...
4 years ago

CVE-2021-0686 - In getDefaultSmsPackage of RoleManagerService.java, there is a possible way to get information about the default sms app of a different device user due to a missing permission check. This could lead to local information disclosure with no additional ...
2 years ago

CVE-2000-0686 - Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the fromfile parameter. ...
16 years ago

CVE-2005-0686 - Integer overflow in mlterm 2.5.0 through 2.9.1, with gdk-pixbuf support enabled, allows remote attackers to execute arbitrary code via a large image file that is used as a background. ...
16 years ago

CVE-1999-0686 - Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL. ...
16 years ago

CVE-2010-0686 - WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote attackers to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding ...
14 years ago

CVE-2013-0686 - Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML ...
11 years ago

CVE-2015-0686 - The SNMP implementation in Cisco NX-OS 6.1(2)I2(3) on Nexus 9000 devices, when a Reset High Availability (HA) policy is configured, allows remote authenticated users to cause a denial of service (device reload) via unspecified vectors, aka Bug ID ...
9 years ago

CVE-2002-0686 - Buffer overflow in the search component for iPlanet Web Server (iWS) 4.1 and Sun ONE Web Server 6.0 allows remote attackers to execute arbitrary code via a long argument to the NS-rel-doc-name parameter. ...
8 years ago

CVE-2011-0686 - Unspecified vulnerability in Opera before 11.01 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by vkontakte.ru. ...
7 years ago

CVE-2008-0686 - SQL injection vulnerability in index.php in the NeoReferences (com_neoreferences) 1.3.1 and 1.3.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter. ...
7 years ago

CVE-2014-0686 - Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908. ...
6 years ago

CVE-2001-0686 - Buffer overflow in mail included with SunOS 5.8 for x86 allows a local user to gain privileges via a long HOME environment variable. ...
6 years ago

CVE-2003-0686 - Buffer overflow in PAM SMB module (pam_smb) 1.1.6 and earlier, when authenticating to a remote service, allows remote attackers to execute arbitrary code. ...
6 years ago

CVE-2006-0686 - add_user.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier does not check user privileges when adding a new administrative user, which allows remote attackers to gain unauthorized access. ...
6 years ago

CVE-2018-0686 - Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) allows remote authenticated attackers to upload and execute any executable files via unspecified vectors. ...
5 years ago

Latest Cyber News

CVE-2024-36610 - 2 hours ago
CVE-2024-54661 - 3 hours ago
CVE-2024-9404 - 4 hours ago
CVE-2024-12123 - 4 hours ago
CVE-2024-12099 - 4 hours ago
CVE-2024-10885 - 4 hours ago
CVE-2024-53900 - 4 hours ago
CVE-2024-11747 - 5 hours ago
CVE-2024-10952 - 5 hours ago
CVE-2024-10832 - 5 hours ago
CVE-2024-10663 - 5 hours ago
CVE-2024-10587 - 5 hours ago
CVE-2024-11897 - 5 hours ago
CVE-2024-11813 - 5 hours ago
CVE-2024-11807 - 5 hours ago
CVE-2024-11093 - 5 hours ago
CVE-2024-42451 - 6 hours ago
CVE-2024-45207 - 6 hours ago
CVE-2024-45206 - 6 hours ago
CVE-2024-45205 - 6 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 11 months ago
Kimsuky - 1 year ago
LogoFAIL - 11 months ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2024-11479 - 7 hours ago
CVE-2024-42451 - 6 hours ago
CVE-2024-45207 - 6 hours ago
CVE-2024-45206 - 6 hours ago
CVE-2024-45205 - 6 hours ago
CVE-2024-45204 - 6 hours ago
CVE-2024-42457 - 6 hours ago
CVE-2024-42455 - 6 hours ago
CVE-2024-42453 - 6 hours ago
CVE-2024-42452 - 6 hours ago
CVE-2024-42449 - 6 hours ago
CVE-2024-40717 - 6 hours ago
CVE-2024-11985 - 6 hours ago
CVE-2024-42456 - 6 hours ago
CVE-2024-11747 - 5 hours ago
CVE-2024-10952 - 5 hours ago
CVE-2024-10832 - 5 hours ago
CVE-2024-10663 - 5 hours ago
CVE-2024-10587 - 5 hours ago
CVE-2024-11897 - 5 hours ago