43 matches found
Zero Day Initiative: A 1H2018 Recap
When the Zero Day Initiative ZDI was formed in 2005, the cyber threat landscape was a bit different from what we see today. Threats were a little less sophisticated, but there was one thing that we saw then that we still see now: the shortage of cybersecurity professionals and researchers. The te...
Preemptive Protection against Squid idnsALookup DNS Name Handling Buffer Overflow (CVE-2013-4115)
A buffer overflow vulnerability exists in Squid proxy...
Preemptive Protection against Microsoft Lync Remote Code Execution (MS13-035; CVE-2013-1302)
A remote code execution vulnerability has been reported in Microsoft Lync. The vulnerability is due the way Lync control attempts to access an object in memory that has been deleted. An attacker could exploit the vulnerability by convincing the user to accept an invitation to launch specially...
Preemptive protection against Microsoft CGM File Format Memory Corruption (MS12-057; CVE-2012-2524)
A memory corruption vulnerability has been reported in Microsoft Office...
Preemptive Protection against Freefloat FTP Server Invalid Command Buffer Overflow
A buffer overflow vulnerability has been reported in Freefloat FTP Server...
Preemptive Protection against Freefloat FTP Server Invalid Command Buffer Overflow (CVE-2005-0696; CVE-2005-3683)
A buffer overflow vulnerability has been reported in Freefloat FTP Server...
Preemptive Protection against Microsoft Forefront UAG Default Reflected XSS Information Disclosure (MS11-079; CVE-2011-1897)
An information disclosure vulnerability has been reported in Microsoft Forefront Unified Access Gateway UAG server...
Preemptive Protection against Microsoft Windows Kernel Font Library File Buffer Overrun (MS11-077; CVE-2011-2003)
A buffer overflow vulnerability has been reported in Microsoft Windows kernel...
Preemptive Protection against Microsoft Forefront UAG ExcelTable Reflected XSS Information Disclosure (MS11-079; CVE-2011-1896)
An information disclosure vulnerability has been reported in Microsoft Forefront Unified Access Gateway UAG server...
Preemptive Protection against Microsoft Active Directory Certificate Services Cross-Site Scripting (MS11-051; CVE-2011-1264)
A cross-site scripting vulnerability has been reported in Microsoft Active Directory Certificate Services...
Preemptive Protection against Adobe PDF File LoadImageA RMA JavaScript Multiple Code Execution Vulnerabilities (APSB11-24; CVE-2011-2439)
Multiple code execution vulnerabilities have been reported in Adobe Reader and Acrobat...
Preemptive Protection against Microsoft SharePoint Server Multiple Cross Site Scripting Vulnerabilities (MS11-074)
Multiple cross-site scripting vulnerabilities have been reported in Microsoft SharePoint Server. A remote attacker could exploit these vulnerabilities to execute a cross-site scripting attack that could allow him to issue commands in an affected SharePoint server...
Preemptive Protection against Microsoft Office Excel Use-after-free Code Execution (MS11-072; CVE-2011-1986)
A remote code execution vulnerability has been reported in Microsoft Office Excel. A remote attacker could exploit this vulnerability to execute arbitrary code in an affected system...
Preemptive Protection against Microsoft Internet Explorer SafeHTML Cross-Site Scripting (MS11-074)
An information disclosure vulnerability has been reported in Internet Explorer. A remote attacker may exploit this vulnerability to perform cross-site scripting attacks and run script in the security context of the logged-on user...
Preemptive Protection against Microsoft Windows TCP/IP QOS Denial of Service (MS11-064; CVE-2011-1965)
A denial of service DoS vulnerability has been reported in Microsoft Windows TCP/IP stack. An attacker could exploit this vulnerability to cause a DoS condition in an affected system. As a result, the system may become unresponsive and automatically reboot...
Preemptive Protection against Adobe Shockwave Player Director File FFFFFF88 Record Parsing Remote Code Execution Vulnerabilities (APSB11-01)
A code execution vulnerability exists in Adobe Shockwave player. The vulnerability is due to an integer overflow error while calculating the size value for heap memory allocation while parsing a FFFFFF88 record. Remote attackers can exploit this vulnerability by enticing target users to open a...
Preemptive Protection against Microsoft Office Excel HLink Record Remote Code Execution Vulnerability (MS11-021)
A remote code execution vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a targe...
Preemptive Protection against LizaMoon - Mass SQL Injection Attacks
LizaMoon is a mass SQL code injection attack, where a Web application vulnerability is exploited to inject malicious code into affected websites. If a Web surfer visits an infested site, he will be redirected to an alternate website that tries to install a rogue anti-malware software. This...
Preemptive Protection against Microsoft IIS FTP Server Telnet IAC Buffer Overflow Vulnerability (MS11-004)
A heap buffer overflow vulnerability has been reported within the Microsoft Internet Information Services IIS FTP Service. IIS is a collection of Internet services packaged with several versions of the Windows operating system. IIS includes a FTP server service for exchanging and manipulating fil...
Preemptive Protection against Freefloat FTP Server Buffer Overflow
A 0-day exploit has been reported in Freefloat FTP Server, a freeware FTP server for all Windows oeprating systems...