BitDefender Online Scanner 8 Double Decode Heap Overflow
Release Date:
November 20, 2007
Date Reported:
October 24, 2007
Severity:
High (Remote Code Execution)
Vendor:
BitDefender / SOFTWIN - http://www.bitdefender.com
Systems Affected:
BitDefender Online Scan Users
Overview:
eEye Digital
Multiple Vulnerabilities In .FLAC File Format and Various Media
Applications
Release Date:
November 15, 2007
Date Reported:
September 28, 2007 (Vendor Reporting Coordination Began With US-CERT)
Severity:
High (Remote Code Execution)
Vendor:
Multiple Vendors
Systems Affected:
Applications with
CA BrightStor ARCserve Backup Server Arbitrary Pointer Dereference
Release Date:
October 11, 2007
Date Reported:
June 18, 2007
Severity:
High (Remote Code Execution)
Vendor:
Computer Associates (CA)
Systems Affected:
BrightStor ARCserve Backup 11.5
BrightStor ARCserve Backup 11.1
BrightStor
Multiple Vulnerabilities in CA ARCserve for Laptops Desktops
Release Date:
September 20, 2007
Date Reported:
June 5, 2007
Severity:
High (Remote Code Execution)
Vendor:
Computer Associates (CA)
Systems Affected:
CA ARCserve Backup for Laptops and Desktops r11.5
CA ARCserve Backup for Laptops
VGX.DLL Compressed Content Heap Overflow Vulnerability
Release Date:
August 14, 2007
Date Reported:
October 24, 2006
Severity:
High (Code Execution)
Systems Affected:
Internet Explorer 6 SP1 - Windows 2000 SP4
Internet Explorer 6 SP1 - Windows XP SP1
Internet Explorer 6 SP2 - Windows XP SP2
Windows Metafile AttemptWrite Heap Overflow
Release Date:
August 14, 2007
Date Reported:
March 27, 2007
Severity:
High (Code Execution)
Systems Affected:
Windows 2000 SP4
Windows XP SP2
Windows Server 2003 SP1
Overview:
eEye Digital Security has discovered a heap overflow vulnerability in
the
Microsoft Publisher 2007 Arbitrary Pointer Dereference
Release Date:
July 10, 2007
Date Reported:
February 16, 2007
Severity:
High (Remote Code Execution)
Vendor:
Microsoft
Vendor Software Affected:
Microsoft Office 2007 Small Business
Microsoft Office 2007 Professional
Microsoft Office 2007
Sun Java WebStart JNLP Stack Buffer Overflow Vulnerability
Release Date:
July 5, 2007
Date Reported:
Jan 19, 2007
Severity:
High (Remote Code Execution)
Vendor:
Sun Microsystems
Systems Affected:
Java Runtime Environment 6 Update 1, and earlier
Java Runtime Environment 5 Update 11, and
Yahoo Webcam ActiveX Controls Multiple Buffer Overflows
Release Date:
June 8, 2007
Date Reported:
June 5, 2007
Severity:
High (Remote Code Execution)
Vendor:
Yahoo!, Inc.
Systems Affected:
Yahoo Messenger 8 for Windows
Overview:
eEye Digital Security has discovered two critical
Windows Vista CSRSS Dangling Process Pointer Privilege Escalation
Release Date:
April 10, 2007
Date Reported:
January 19, 2007
Severity:
Medium (Local Privilege Escalation to SYSTEM)
Vendor:
Microsoft
Systems Affected:
Windows Vista
Overview:
eEye Digital Security has discovered a local
Windows VDM Zero Page Race Condition Privilege Escalation
Release Date:
April 10, 2007
Date Reported:
December 12, 2006
Severity:
Medium (Local Privilege Escalation to Kernel)
Systems Affected:
Windows NT 4.0 SP6
Windows 2000 SP4
Windows XP SP2 (x86)
Windows Server 2003 SP2 (x86)
Overview:
eEye Research - http://research.eeye.com
Intel Network Adapter Driver Local Privilege Escalation
Release Date:
December 7, 2006
Date Reported:
July 10, 2006
Severity:
Medium (Local Privilege Escalation to Kernel)
Systems Affected:
Windows 2000, XP, 2003, Vista
Intel PRO 10/100 -
eEye Research - http://research.eeye.com
Adobe Download Manager AOM Stack Buffer Overflow Vulnerability
Release Date:
December 5, 2006
Date Reported:
November 10, 2006
Severity:
High (Code Execution)
Systems Affected:
Adobe Download Manager 2.1.x and earlier
Overview:
eEye Digital Security
eEye Research - http://research.eeye.com
Workstation Service NetpManageIPCConnect Buffer Overflow
Release Date:
November 14, 2006
Date Reported:
July 25, 2006
Severity:
High (Remote Code Execution)
Vendor:
Microsoft
Systems Affected:
Windows 2000 (Remote Code Execution)
Windows XP SP1 (Local
Internet Explorer Compressed Content URL Heap Overflow Vulnerability #2
http://research.eeye.com/html/advisories/published/AD20060912.html
Release Date:
September 12, 2006
Date Reported:
August 24, 2006
Severity:
High (Code Execution)
Systems Affected:
Internet Explorer 5 SP4 with MS06-042 -
IBM eGatherer ActiveX Code Execution Vulnerability
Release Date:
August 16, 2006
Date Reported:
July 3, 2006
Patch Development Time (in days):
44
Severity:
High (Remote Code Execution)
Vendor:
IBM / Lenovo
Systems Affected:
Windows NT 4.0 (All versions)
Windows 2000 (All versions)
Windows XP
McAfee Subscription Manager Stack Buffer Overflow
Release Date:
August 7, 2006
Date Reported:
July 19, 2006
Patch Development Time (In Days):
17 Days
Severity:
High (Remote Code Execution)
Vendor:
McAfee
Systems Affected:
McAfee AntiSpyware 1.x, 2.x
McAfee Internet Security Suite 6.x,
D-Link Router UPNP Stack Overflow
Release Date:
July 13, 2006
Date Reported:
February 27, 2006
Patch Development Time (In Days):
136
Severity:
High (Remote Code Execution)
Vendor:
D-Link
Routers Affected:
DI-524 Rev A
DI-524 Rev C
DI-524 Rev D
DI-604 Rev E
DI-624 Rev C
DI-624 Rev D
DI-784
McAfee ePolicy Orchestrator Remote Compromise
Release Date:
July 13, 2006
Severity:
High (Remote Code Execution)
Vendor:
McAfee
Systems Affected:
McAfee Common Management (EPO) Agent versions below version 3.5.5.438
Overview:
McAfee ePolicy Orchestrator is the remote security management
Apple QuickTime FPX Integer Overflow
Release Date:
May 11, 2006
Date Reported:
March 7, 2006
Patch Development Time (In Days):
65
Severity:
High (Remote Code Execution)
Vendor:
Apple
Systems Affected:
Quicktime on Windows 2000
Quicktime on Windows XP
Quicktime on Mac OS X 10.3.9
Microsoft Distributed Transaction Coordinator Denial of Service
http://www.eeye.com/html/research/advisories/AD20060509b.html
Release Date:
May 9, 2006
Date Reported:
October 11, 2005
Patch Development Time (In Days):
210
Severity:
Low (Denial of Service)
Systems Affected:
Windows NT 4.0
Microsoft Distributed Transaction Coordinator Heap Overflow
http://www.eeye.com/html/research/advisories/AD20060509a.html
Release Date:
May 9, 2006
Date Reported:
October 11, 2005
Patch Development Time (In Days):
210
Severity:
High (Remote Code Execution)
Systems Affected:
Windows NT 4.0
Juniper Networks SSL-VPN Client Buffer Overflow
Release Date:
April 25, 2006
Date Reported:
February 27, 2006
Patch Development Time (In Days):
57 Days
Severity:
High (Remote Code Execution)
Vendor:
Juniper Networks
Software Affected:
Juniper SSL-VPN JuniperSetup Control
Operating Systems
EEYEB-20051017 Windows Media Player BMP Heap Overflow
Release Date:
February 14, 2006
Date Reported:
October 17, 2005
Patch Development Time (In Days):
60
Severity:
High (Remote Code Execution)
Vendor:
Microsoft
Systems Affected:
Microsoft Windows Media Player 7.1 through 10
Windows NT
24 matches
Mail list logo