648 matches found
iDefense Security Advisory 01.10.11: HP Network Node Manager Command Injection Vulnerability
iDefense Security Advisory 01.10.11 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 10, 2011 I. BACKGROUND HP Network Node Manager Command Injection Vulnerability HP Network Node Manager NNM is an application suite that is used to map out and manage network topography. NNM runs on a...
iDefense Security Advisory 12.14.10: Microsoft Internet Explorer HTML Object Memory Corruption Vulnerability
iDefense Security Advisory 12.14.10 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 14, 2010 I. BACKGROUND Internet Explorer is a graphical web browser developed by Microsoft Corp. that has been included with Microsoft Windows since 1995. For more information about Internet Explorer,...
iDefense Security Advisory 12.14.10: Microsoft Internet Explorer CSS Style Table Layout Uninitialized Memory Vulnerability
iDefense Security Advisory 12.14.10 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 14, 2010 I. BACKGROUND Internet Explorer is a graphical web browser developed by Microsoft Corp. that has been included with Microsoft Windows since 1995. For more information about Internet Explorer,...
iDefense Security Advisory 12.10.10: RealNetworks RealPlayer RealAudio Codec Memory Corruption Vulnerability
iDefense Security Advisory 12.10.10 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 10, 2010 I. BACKGROUND RealPlayer is RealNetworks's media player product used to render video and other media. For more information, visit http://www.real.com/. II. DESCRIPTION Remote exploitation of a...
iDefense Security Advisory 12.10.10: RealNetworks RealPlayer Memory Corruption Vulnerability
iDefense Security Advisory 12.10.10 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 10, 2010 I. BACKGROUND RealPlayer is RealNetworks's media player product used to render video and other media. For more information, visit http://www.real.com/ II. DESCRIPTION Remote exploitation of a...
iDefense Security Advisory 11.11.10: Apple Mobile OfficeImport Framework Excel Parsing Memory Corruption Vulnerability
iDefense Security Advisory 11.11.10 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 11, 2010 I. BACKGROUND The OfficeImport framework is an API used by Apple's mobile devices, including the iPod Touch, iPhone, and iPad. The framework is used to parse and display Microsoft Office file...
FileFuzz Denial of service vulnerability
Exploit for windows platform in category dos / poc ======================================== FileFuzz Denial of service vulnerability ======================================== Exploit Title :Filefuzzer Denial of service vulnerability Software : Filefuzzer Software link...
Filefuzzer Denial Of Service
Exploit Title :Filefuzzer Denial of service vulnerability Software : Filefuzzer Software link :http://labs.idefense.com/software/fuzzing.php Autor : Sweet Email : [email protected] Date : 5/11/2010 Tested on : WinXp sp3 eng | Vmware Software detail: FileFuzz is a graphical Windows based devlopp...
FileFuzz - Denial of Service
FileFuzz - Denial of Service Exploit Title :Filefuzzer Denial of service vulnerability Software : Filefuzzer Software link :http://labs.idefense.com/software/fuzzing.php Autor : Sweet Email : [email protected] Date : 5/11/2010 Tested on : WinXp sp3 eng | Vmware Software detail: FileFuzz is a...
iDefense Security Advisory 08.10.10: Microsoft Office RTF Parsing Engine Memory Corruption Vulnerability
iDefense Security Advisory 08.10.10 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 10, 2010 I. BACKGROUND Microsoft Word is a word processing application from Microsoft Office. For more information about Microsoft Word, see the following website:...
iDefense Security Advisory 08.03.10: Citrix ICA Client ActiveX Memory Corruption Vulnerabillity
iDefense Security Advisory 08.03.10 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 03, 2010 I. BACKGROUND The Citrix ICA Client is an ActiveX control used to connect to a Citrix XenApp formerly Citrix Presentation Server server via the browser. Using this control allows clients to...
Microsoft Says No to Paying Bug Bounties
Microsoft has no plans to follow in the footsteps of Mozilla and Google and pay researchers cash rewards for the bugs that they find in Microsoft’s products. In the wake of both Mozilla and Google significantly increasing their bug bounties to the $3,000 range, there have been persistent rumors i...
iDefense Security Advisory 06.21.10: Multiple Vendor LibTIFF 3.9.2 Stack Buffer Overflow Vulnerability
iDefense Security Advisory 06.21.10 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 21, 2010 I. BACKGROUND libTIFF is a free and popular image library that provides support for displaying and manipulating Tag Image File Format TIFF image data. This library is used by numerous...
iDefense Security Advisory 06.16.10: Samba 3.3.12 Memory Corruption Vulnerability
iDefense Security Advisory 06.16.10 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 16, 2010 I. BACKGROUND Samba is an open-source Unix server application used to implement Windows file sharing and domain controlling functionality. For more information, please visit: http://www.samba.o...
Samba < 3.3.13 'SMB1 Packet Chaining' Unspecified Remote Memory Corruption Vulnerability
Samba is prone to an unspecified memory-corruption vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:samba:samba";...
iDefense Security Advisory 06.07.10: Multiple Vendor WebKit HTML Caption Use After Free Vulnerability
iDefense Security Advisory 06.07.10 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 07, 2010 I. BACKGROUND WebKit is an open source web browser engine. It is currently used by Apple Inc.'s Safari browser, as well as by Google's Chrome browser. For more information, see the vendor's sit...
iDefense Security Advisory 06.10.10: Adobe Flash Player Use-After-Free Vulnerability
iDefense Security Advisory 06.10.10 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 10, 2010 I. BACKGROUND Adobe Flash Player is a very popular Web browser plugin. It is available for multiple Web browsers and platforms, including Windows, Linux and MacOS. Flash Player enables Web...
iDefense Security Advisory 05.11.10: Abobe Shockwave Player Heap Memory Indexing Vulnerability
iDefense Security Advisory 05.11.10 http://labs.idefense.com/intelligence/vulnerabilities/ May 11, 2010 I. BACKGROUND Adobe Shockwave Player is a popular Web browser plugin. It is available for multiple Web browsers and platforms, including Windows, and MacOS. Shockwave Player enables Web browser...
iDefense Security Advisory 04.15.10: Multiple Vendor AgentX++ Stack Buffer Overflow Vulnerability
iDefense Security Advisory 04.15.10 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 15, 2010 I. BACKGROUND Agent Extensibility AgentX Protocol was designed to address interoperability issues with extensible SNMP agents. AgentX++ is a C++ implementation of the AgentX protocol. It is one...
iDefense Security Advisory 03.09.10: Microsoft Excel FNGROUPNAME Record Uninitialized Memory Vulnerability
iDefense Security Advisory 03.09.10 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 09, 2010 I. BACKGROUND Excel is the spreadsheet application included with Microsoft Corp.'s Office productivity software suite. More information is available at the following website:...