247 matches found
Autodesk SoftImage Scene TOC Arbitrary Command Execution
Advisory ID Internal CORE-2009-0908 1. Advisory Information Title: Autodesk SoftImage Scene TOC Arbitrary Command Execution Advisory Id: CORE-2009-0908 Advisory URL:http://www.coresecurity.com/content/softimage-arbitrary-command-execution Date published: 2009-11-23 Date of last update: 2009-11-20...
IBM SolidDB invalid error code vulnerability
Advisory ID Internal CORE-2009-1027 1. Advisory Information Title: IBM SolidDB invalid error code vulnerability Advisory Id: CORE-2009-1027 Date published: 2009-11-18 Date of last update: 2009-11-18 Vendors contacted: IBM Release mode: Forced release 2. Vulnerability Information Class: External...
HP Openview NNM 7.53 Invalid DB Error Code vulnerability
Advisory ID Internal CORE-2009-0814 1. Advisory Information Title: HP Openview NNM 7.53 Invalid DB Error Code vulnerability Advisory Id: CORE-2009-0814 Date published: 2009-11-17 Date of last update: 2009-11-17 Vendors contacted: HP Release mode: Coordinated release 2. Vulnerability Information...
Blender .blend Project Arbitrary Command Execution
Advisory ID Internal CORE-2009-0912 1. Advisory Information Title: Blender .blend Project Arbitrary Command Execution Advisory Id: CORE-2009-0912 Advisory URL:http://www.coresecurity.com/content/blender-scripting-injection Date published: 2009-11-05 Date of last update: 2009-11-04 Vendors...
Jetty Persistent XSS in Sample Cookies Application
Advisory ID Internal CORE-2009-0922 1. Advisory Information Title: Jetty Persistent XSS in Sample Cookies Application Advisory Id: CORE-2009-0922 Date published: 2009-10-06 Date of last update: 2009-10-06 Vendors contacted: Jetty Team Release mode: Coordinated release 2. Vulnerability Information...
Hyperic HQ Multiple XSS
Advisory ID Internal CORE-2009-0812 1. Advisory Information Title: Hyperic HQ Multiple XSS Advisory Id: CORE-2009-0812 Date published: 2009-10-02 Date of last update: 2009-11-23 Vendors contacted: SpringSource Release mode: Coordinated release 2. Vulnerability Information Class: Cross site...
Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server
1. Advisory Information Title: Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server Advisory ID: CORE-2009-0820 Advisory URL:http://www.coresecurity.com/core-labs/advisories/dnsmasq-vulnerabilities Date published: 2009-08-31 Date of last update: 2009-08-31 Vendors contacted: Simon...
Libpurple msn_slplink_process_msg() Arbitrary Write Vulnerability
Advisory ID Internal CORE-2009-0727 1. Advisory Information Title: Libpurple msnslplinkprocessmsg Arbitrary Write Vulnerability Advisory ID: CORE-2009-0727 Date published: 2009-08-18 Date of last update: 2009-08-18 Vendors contacted: Pidgin team Release mode: Coordinated release 2. Vulnerability...
Firebird SQL op_connect_request main listener shutdown vulnerability
1. Advisory Information Title: Firebird SQL opconnectrequest main listener shutdown vulnerability Advisory ID: CORE-2009-0707 Advisory URL:http://www.coresecurity.com/core-labs/advisories/firebird-sql-dos Date published: 2009-07-28 Date of last update: 2009-07-28 Vendors contacted: Firebird SQL...
Real Helix DNA RTSP and SETUP request handler vulnerabilities
Core Security - CoreLabsReal Helix DNA RTSP and SETUP request handler vulnerabilities 1. Advisory Information Title: Real Helix DNA RTSP and SETUP request handler vulnerabilities Advisory ID: CORE-2009-0227 Advisory URL: http://www.coresecurity.com/content/real-helix-dna Date published: 2009-07-1...
WordPress Privileges Unchecked in admin.php and Multiple Information Disclosures
Advisory ID Internal CORE-2009-0515 1. Advisory Information Title: WordPress Privileges Unchecked in admin.php and Multiple Information Disclosures Advisory ID: CORE-2009-0515 Advisory URL:http://www.coresecurity.com/content/WordPress-Privileges-Unchecked Date published: 2009-07-08 Date of last...
Awingsoft Awakening Winds3D Viewer remote command execution vulnerability
Advisory ID Internal CORE-2009-0519 1. Advisory Information Title: Awingsoft Awakening Winds3D Viewer remote command execution vulnerability Advisory ID: CORE-2009-0519 Advisory URL:http://www.coresecurity.com/content/winds3d-viewer-advisory Date published: 2009-07-08 Date of last update:...
Internet Explorer Security Zone restrictions bypass
Advisory ID Internal CORE-2008-0826 1. Advisory Information Title: Internet Explorer Security Zone restrictions bypass Advisory ID: CORE-2008-0826 Date published: 2009-06-09 Date of last update: 2009-06-09 Vendors contacted: Microsoft Release mode: Coordinated release 2. Vulnerability Information...
DX Studio Player Firefox plug-in command injection
1. Advisory Information Title: DX Studio Player Firefox plug-in command injection Advisory ID: CORE-2009-0521 Advisory URL:http://www.coresecurity.com/core-labs/advisories/DXStudio-player-firefox-plugin Date published: 2009-06-09 Date of last update: 2009-06-08 Vendors contacted: Worldweaver...
Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability
Advisory ID Internal CORE-2009-0420 Core Security - CoreLabs Apple CUPS IPPTAGUNSUPPORTED Handling null pointer Vulnerability 1. Advisory Information Title: Apple CUPS IPPTAGUNSUPPORTED Handling null pointer Vulnerability Advisory ID: CORE-2009-0420 Advisory...
StoneTrip S3DPlayers remote command injection
StoneTrip S3DPlayers remote command injection 1. Advisory Information Title: StoneTrip S3DPlayers remote command injection Advisory Id: CORE-2009-0401 Advisory URL: Date published: 2009-05-28 Date of last update: 2010-05-18 Vendors contacted: StoneTrip Release mode: User release 2. Vulnerability...
Multiple XSS in Sun Communications Express
Advisory ID Internal CORE-2009-0109 1. Advisory Information Title: Multiple XSS in Sun Communications Express Advisory ID: CORE-2009-0109 Advisory URL:https://www.coresecurity.com/core-labs/advisories/sun-communications-express Date published: 2009-05-20 Date of last update: 2009-05-20 Vendors...
HTTP Response Splitting vulnerability in Sun Delegated Administrator
Advisory ID Internal CORE-2009-0114 1. Advisory Information Title: HTTP Response Splitting vulnerability in Sun Delegated Administrator Advisory ID: CORE-2009-0114 Date published: 2009-04-21 Date of last update: 2009-04-21 Vendors contacted: Sun Microsystems Release mode: Coordinated release 2...
Multiple vulnerabilities in Sun Calendar Express Web Server
Advisory ID Internal CORE-2009-0108 1. Advisory Information Title: Multiple vulnerabilities in Sun Calendar Express Web Server Advisory ID: CORE-2009-0108 Advisory URL:https://www.coresecurity.com/core-labs/advisories/sun-calendar-express Date published: 2009-03-31 Date of last update: 2009-03-31...
HP OpenView Buffer Overflows
Advisory ID Internal CORE-2009-0122 1. Advisory Information Title: HP OpenView Buffer Overflows Advisory ID: CORE-2009-0122 Date published: 2009-03-23 Date of last update: 2009-03-19 Vendors contacted: Hewlett-Packard Release mode: Coordinated release 2. Vulnerability Information Class: Buffer...
Foxit Reader Multiple Vulnerabilities
Advisory ID Internal CORE-2009-0218 1. Advisory Information Title: Foxit Reader Multiple Vulnerabilities Advisory ID: CORE-2009-0218 Advisory URL:www.coresecurity.com/core-labs/advisories/foxit-reader-vulnerabilities Date published: 2009-03-09 Date of last update: 2009-03-09 Vendors contacted:...
VNC Multiple Integer Overflows
1. Advisory Information Title: VNC Multiple Integer Overflows Advisory ID: CORE-2008-1009 Advisory URL:http://www.coresecurity.com/core-labs/advisories/vnc-integer-overflows Date published: 2009-02-03 Date of last update: 2009-02-03 Vendors contacted: UltraVNC, TightVNC Release mode: Coordinated...
Amaya web editor XML and HTML parser vulnerabilities
Advisory ID Internal CORE-2008-1211 1. Advisory Information Title: Amaya web editor XML and HTML parser vulnerabilities Advisory ID: CORE-2008-1211 Advisory URL:http://www.coresecurity.com/content/amaya-buffer-overflows Date published: 2009-01-28 Date of last update: 2009-01-26 Vendors contacted:...
Openfire multiple vulnerabilities
Openfire multiple vulnerabilities 1. Advisory Information Title: Openfire multiple vulnerabilities Advisory ID: CORE-2008-1128 Advisory URL: Date published: 2009-01-08 Date of last update: 2009-01-07 Vendors contacted: Jive Software Release mode: Coordinated release 2. Vulnerability Information...
Microsoft Word Malformed FIB Arbitrary Free Vulnerability
Advisory ID Internal CORE-2008-0228 1. Advisory Information Title: Microsoft Word Malformed FIB Arbitrary Free Vulnerability Advisory ID: CORE-2008-0228 Advisory URL:https://www.coresecurity.com/core-labs/advisories/word-arbitrary-free Date published: 2008-12-10 Date of last update: 2008-12-10...
Vinagre show_error() format string vulnerability
1. Advisory Information Title: Vinagre showerror format string vulnerability Advisory ID: CORE-2008-1127 Advisory URL:http://www.coresecurity.com/core-labs/advisories/vinagre-format-string Date published: 2008-12-09 Date of last update: 2008-12-09 Vendors contacted: Vinagre team Release mode:...
Adobe Reader Javascript Printf Buffer Overflow
Advisory ID Internal CORE-2008-0526 1. Advisory Information Title: Adobe Reader Javascript Printf Buffer Overflow Advisory ID: CORE-2008-0526 Advisory URL:http://www.coresecurity.com/content/adobe-reader-buffer-overflow Date published: 2008-11-04 Date of last update: 2008-11-04 Vendors contacted:...
VLC media player XSPF Memory Corruption
1. Advisory Information Title: VLC media player XSPF Memory Corruption Advisory ID: CORE-2008-1010 Advisory URL:http://www.coresecurity.com/core-labs/advisories/vlc-xspf-memory-corruption Date published: 2008-10-14 Date of last update: 2008-10-14 Vendors contacted: VLC Release mode: Coordinated...
iPhone Safari JavaScript alert Denial of Service
Advisory ID Internal CORE-2008-0603 1. Advisory Information Title: iPhone Safari JavaScript alert Denial of Service Advisory ID: CORE-2008-0603 Date published: 2008-09-12 Date of last update: 2008-09-11 Vendors contacted: Apple Security Release mode: Coordinated release 2. Vulnerability...
vBulletin Cross Site Scripting Vulnerability
1. Advisory Information Title: vBulletin Cross Site Scripting Vulnerability Advisory ID: CORE-2008-0813 Advisory URL:https://www.coresecurity.com/core-labs/advisories/vbulletin-cross-site-scripting-vulnerability Date published: 2008-08-20 Date of last update: 2008-08-20 Vendors contacted:...
Anzio Web Print Object Buffer Overflow
Advisory ID Internal CORE-2008-0624 Advisory Information Title: Anzio Web Print Object Buffer Overflow Advisory ID: CORE-2008-0624 Advisory URL:http://www.coresecurity.com/content/anzio-web-print-object-buffer-overflow Date published: 2008-08-20 Date of last update: 2008-08-20 Vendors contacted:...
Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass
Advisory ID Internal CORE-2008-0103 Advisory Information Title: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass Advisory ID: CORE-2008-0103 Date published: 2008-08-13 Date of last update: 2008-08-12 Vendors contacted: Microsoft Release mode: Coordinated...
Sun xVM VirtualBox Privilege Escalation Vulnerability
1. Advisory Information Title: Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory ID: CORE-2008-0716 Advisory URL:http://www.coresecurity.com/core-labs/advisories/virtualbox-privilege-escalation-vulnerability Date published: 2008-08-04 Date of last update: 2008-08-04 Vendors contacted...
CitectSCADA ODBC service vulnerability
Advisory ID Internal CORE-2008-0125 Advisory Information Title: CitectSCADA ODBC service vulnerability Advisory ID: CORE-2008-0125 Advisory URL:https://www.coresecurity.com/core-labs/advisories/citect-scada-odbc-service-vulnerability Date published: 2008-06-11 Date of last update: 2008-06-10...
NASA BigView Stack Buffer Overflow
Advisory ID Internal CORE-2008-0425 Advisory Information: Title: NASA BigView Stack Buffer Overflow Advisory ID: CORE-2008-0425 Advisory URL:https://www.coresecurity.com/core-labs/advisories/nasa-big-view Date published: 2008-06-04 Date of last update: 2008-06-03 Vendors contacted: NASA Ames...
Multiple vulnerabilities in iCal
Advisory ID Internal CORE-2008-0126 Advisory Information Title: Multiple vulnerabilities in iCal Advisory ID: CORE-2008-0126 Advisory URL:https://www.coresecurity.com/core-labs/advisories/ical Date published: 2008-05-21 Date of last update: 2008-05-22 Vendors contacted: Apple Inc. Release mode:...
Borland Interbase 2007 Integer Overflow
Advisory ID Internal CORE-2008-0415 Advisory Information Title: Borland Interbase 2007 Integer Overflow Advisory ID: CORE-2008-0415 Advisory URL:http://www.coresecurity.com/?action=item&id=2278 Date published: 2008-05-20 Date of last update: 2008-05-20 Vendors contacted: Borland Release mode:...
Wonderware SuiteLink Denial of Service vulnerability
Advisory ID Internal CORE-2008-0129 1. Advisory Information Title: Wonderware SuiteLink Denial of Service vulnerability Advisory ID: CORE-2008-0129 Advisory URL:https://www.coresecurity.com/content/wonderware Date published: 2008-05-05 Date of last update: 2008-05-05 Vendors contacted: Wonderware...
NASA's Common Data Format Buffer Overflow
Advisory ID Internal CORE-2008-0326 Advisory Information: Advisory ID: CORE-2008-0326 Advisory URL:https://www.coresecurity.com/?action=item&id=2260 Date published: 2008-05-05 Date of last update: 2008-05-05 Vendors contacted: GODDARD Space Flight Center Release mode: Coordinated release...
Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls
Advisory ID Internal CORE-2008-0320 Advisory Information Title: Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls Advisory ID: CORE-2008-0320 Date published: 2008-04-28 Date of last update: 2008-04-28 Vendors contacted: BitDefender, Comodo, Sophos and...
Orbit Downloader "Download failed" buffer overflow
Orbit Downloader "Download failed" buffer overflow Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs-research Advisory Information Title: Orbit Downloader "Download failed" buffer overflow Advisory ID: CORE-2008-0314 Advisory URL:...
SILC pkcs_decode buffer overflow
SILC pkcsdecode buffer overflow Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs-research Advisory Information Title: SILC pkcsdecode buffer overflow Advisory ID: CORE-2007-1212 Advisory URL: http://www.coresecurity.com/?action=item&id=2206 Date published:...
Leopard Server Remote Path Traversal
Advisory ID Internal CORE-2008-0123 Advisory Information Title: Leopard Server Remote Path Traversal Advisory ID: CORE-2008-0123 Date published: 2008-03-18 Date of last update: 2008-03-18 Vendors contacted: Apple Inc. Release mode: Coordinated release Vulnerability Information Class: Remote Path...
Timbuktu Pro Remote Path Traversal and Log Injection
Timbuktu Pro Remote Path Traversal and Log Injection Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs-research Advisory Information Title: Timbuktu Pro Remote Path Traversal and Log Injection Advisory ID: CORE-2008-0204 Advisory URL:...
Multiple vulnerabilities in Google's Android SDK
Advisory ID Internal CORE-2008-0124 Advisory Information Title: Multiple vulnerabilities in Google's Android SDK Advisory ID: CORE-2008-0124 Advisory URL:https://www.coresecurity.com/core-labs/advisories/advisory-google Date published: 2008-03-04 Date of last update: 2008-03-04 Vendors contacted:...
VLC media player chunk context validation error
1. Advisory Information Title: VLC media player chunk context validation error Advisory ID: CORE-2008-0130 Advisory URL:https://www.coresecurity.com/core-labs/advisories/advisory-vlc Date published: 2008-02-27 Date of last update: 2008-02-27 Vendors contacted: VLC, Miro player Release mode:...
Path Traversal vulnerability in VMware's shared folders implementation
Path Traversal vulnerability in VMware's shared folders implementation Core Security Technologies - CoreLabs Advisory Advisory Information Title: Path Traversal vulnerability in VMware's shared folders implementation Advisory ID: CORE-2007-0930 Advisory URL:...
MPlayer arbitrary pointer dereference
Advisory ID Internal CORE-2008-0122 Advisory Information Title: MPlayer arbitrary pointer dereference Advisory ID: CORE-2008-0122 Advisory URL:https://www.coresecurity.com/core-labs/advisories/mplayer-advisorie Date published: 2008-02-04 Date of last update: 2008-01-30 Vendors contacted: MPlayer...
MPlayer 1.0rc2 buffer overflow vulnerability
Advisory ID Internal CORE-2007-1218 Advisory Information: Title: MPlayer 1.0rc2 buffer overflow vulnerability Advisory ID: CORE-2007-1218 Advisory URL:https://www.coresecurity.com/core-labs/advisories/mplayer-overflow-advisorie Date published: 2008-02-04 Date of last update: 2008-02-01 Vendors...
Firebird Remote Memory Corruption
Advisory Information Title: Firebird Remote Memory Corruption Advisory ID: CORE-2007-1219 Advisory URL: https://www.coresecurity.com/core-labs/advisories/firebird-remote-memory-corruption Date published: 2008-01-28 Date of last update: 2008-01-24 Vendors contacted: Firebird SQL Release mode:...