New User, Welcome!     Login

<< Previous Next >>

Disclosure Timeline

ZDI-10-062: Novell Netware NWFTPD RMD/RNFR/DELE Argument Parsing Remote Code Execution Vulnerabilities

-- Vendor Response:
Novell states:
A public fix for this issue has been released in download nwftpd16.zip,
available at http://download.novell.com/patch/finder/

-- Disclosure Timeline:
2008-08-26 - Vulnerability reported to vendor
2010-04-05 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-047: Mozilla Firefox libpr0n imgContainer Bits-Per-Pixel Change Remote Code Execution Vulnerability

Mozilla Firefox has issued an update to correct this vulnerability. More
details can be found at:

http://www.mozilla.org/security/announce/2010/mfsa2010-09.html

-- Disclosure Timeline:
2010-02-18 - Vulnerability reported to vendor
2010-04-02 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability

Microsoft has issued an update to correct this vulnerability. More
details can be found at:

http://www.microsoft.com/technet/security/Bulletin/MS10-017.mspx

-- Disclosure Timeline:
2009-07-14 - Vulnerability reported to vendor
2010-03-09 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

[CAL-20100204-1]Adobe Shockwave Player Director File Parsing ATOM size infinite loop vulnerability

ref
http://hi.baidu.com/fs_fx/blog/item/f8de1d18ba8c9b76dbb4bd56.html
http://www.adobe.com/support/security/bulletins/apsb10-12.html

Disclosure Timeline
===================
2010-2-6 report to vendor
2010-2-7 vendor ask poc file
2010-2-7 we sent the poc file.
2010-2-8 vendor comfirm the issue.

ZDI-10-079: Realnetworks Helix Server NTLM Authentication Invalid Base64 Remote Code Execution Vulnerability

RealNetworks states:
This issue has been addressed in v14:

http://www.realnetworks.com/helix-support/security-updates.aspx

-- Disclosure Timeline:
2009-07-14 - Vulnerability reported to vendor
2010-04-28 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability

Sun Microsystems has issued an update to correct this vulnerability. More
details can be found at:

http://sunsolve.sun.com/search/document.do?assetkey=1-66-270474-1

-- Disclosure Timeline:
2009-08-14 - Vulnerability reported to vendor
2009-11-04 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-004: Cisco CiscoWorks IPM GIOP getProcessName Remote Code Execution Vulnerability

Cisco has issued an update to correct this vulnerability. More
details can be found at:

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1351d.shtml

-- Disclosure Timeline:
2008-10-15 - Vulnerability reported to vendor
2010-01-21 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

Advisory 02/2009: PHPIDS Unserialize() Vulnerability

Proof of Concept:

  SektionEins GmbH is not going to release a proof of concept
  exploit for this vulnerability.

Disclosure Timeline:

  19. October  2009 - Notified PHPIDS vendor
  22. October  2009 - PHPIDS developers released PHPIDS 0.6.3.1
  09. December 2009 - Public Disclosure

ZDI-09-069: Microsoft Windows Media Player Audio Voice Sample Rate Memory Corruption Vulnerability

Microsoft has issued an update to correct this vulnerability. More
details can be found at:

http://www.microsoft.com/technet/security/bulletin/ms09-051.mspx

-- Disclosure Timeline:
2008-04-16 - Vulnerability reported to vendor
2009-10-13 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

Pligg Installation File XSS Vulnerability

 
===== Workaround =====
 
Remove the installation directory after installation, as recommended during installation.
 
===== Disclosure Timeline =====
 
June, 16 2010 - Vendor notification.
June, 22 2010 - Vendor replied but did not acknowledge the bug.
June, 22 2010 - New contact attempted to provide more details about the bug.
July, 07 2010 - No vendor reply. Public disclosure.

ZDI-10-074: Sun Microsystems Directory Server Enterprise ASN.1 Parsing Remote Code Execution Vulnerability

Sun Microsystems has issued an update to correct this vulnerability. More
details can be found at:

http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2010.html

-- Disclosure Timeline:
2009-10-27 - Vulnerability reported to vendor
2010-04-13 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control Buffer Overflow

                  Symantec Management Platform 7.x
https://kb.altiris.com/display/1n/articleDirect/index.asp?aid=49389



Disclosure Timeline (YYYY/MM/DD):
=================================

2009.09.09: Vulnerability found
2009.09.15: Sent PoC, Advisory, Disclosure policy and planned disclosure
            date (2009.10.01) to Vendor

NSOADV-2010-006: Authentium Command Free Scan ActiveX Control buffer overflow

More information about how to set the kill bit is available in Microsoft
Support Document 240797 (http://support.microsoft.com/kb/240797).



Disclosure Timeline (YYYY/MM/DD):
=================================

2010.02.15: Vulnerability found
2010.02.22: Initial contact per Online forms
            [-] No Response

ZDI-10-095: Apple Webkit DOCUMENT_POSITION_DISCONNECTED Attribute Remote Code Execution Vulnerability

Apple has issued an update to correct this vulnerability. More
details can be found at:

http://support.apple.com/kb/HT4196

-- Disclosure Timeline:
2009-12-04 - Vulnerability reported to vendor
2010-06-08 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-113: Mozilla Firefox XSLT Sort Remote Code Execution Vulnerability

Mozilla Firefox has issued an update to correct this vulnerability. More
details can be found at:

http://www.mozilla.org/security/announce/2010/mfsa2010-30.html

-- Disclosure Timeline:
2010-03-22 - Vulnerability reported to vendor
2010-06-23 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-055: Sun Java Runtime Environment Mutable InetAddress Socket Policy Violation Vulnerability

Sun Microsystems has issued an update to correct this vulnerability. More
details can be found at:

http://www.oracle.com/technology/deploy/security/critical-patch-updates/javacpumar2010.html

-- Disclosure Timeline:
2009-10-21 - Vulnerability reported to vendor
2010-04-05 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability

Hewlett-Packard has issued an update to correct this vulnerability. More
details can be found at:

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877

-- Disclosure Timeline:
2009-07-16 - Vulnerability reported to vendor
2009-12-09 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability

Hewlett-Packard has issued an update to correct this vulnerability. More
details can be found at:

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877

-- Disclosure Timeline:
2009-08-06 - Vulnerability reported to vendor
2009-12-09 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

MODx Installation File XSS Vulnerability

===== Workaround =====

Remove all installation files after MODx is successfully installed.

===== Disclosure Timeline =====

June, 16 2010 - Vendor notification.
July, 07 2010 - No vendor reply. Public disclosure.

===== References =====

ZDI-10-084: HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Vulnerability

Hewlett-Packard has issued an update to correct this vulnerability. More
details can be found at:

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02153379

-- Disclosure Timeline:
2009-10-21 - Vulnerability reported to vendor
2010-05-11 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-098: Apple Webkit First-Letter Pseudo-Element Style Remote Code Execution Vulnerability

Apple has issued an update to correct this vulnerability. More
details can be found at:

http://support.apple.com/kb/HT4196

-- Disclosure Timeline:
2010-02-23 - Vulnerability reported to vendor
2010-06-08 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-09-085: Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability

Hewlett-Packard has issued an update to correct this vulnerability. More
details can be found at:

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01931960

-- Disclosure Timeline:
2009-11-09 - Vulnerability reported to vendor
2009-11-20 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-09-067: Novell NetWare NFS Portmapper and RPC Module Stack Overflow Vulnerability

Novell has issued an update to correct this vulnerability. More
details can be found at:
 
http://download.novell.com/Download?buildid=DNxmXuyVPuY~
 
-- Disclosure Timeline:
2009-06-23 - Vulnerability reported to vendor
2009-09-30 - Coordinated public release of advisory
 
-- Credit:
This vulnerability was discovered by:

ZDI-09-071: Microsoft Internet Explorer writing-mode Memory Corruption Vulnerability

Microsoft has issued an update to correct this vulnerability. More
details can be found at:

http://www.microsoft.com/technet/security/bulletin/ms09-054.mspx

-- Disclosure Timeline:
2009-06-23 - Vulnerability reported to vendor
2009-10-13 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-09-075: Novell eDirectory LDAP Null Base DN Denial of Service Vulnerability

Novell has issued an update to correct this vulnerability. More
details can be found at:

http://www.novell.com/support/viewContent.do?externalId=7004721

-- Disclosure Timeline:
2009-07-14 - Vulnerability reported to vendor
2009-11-02 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

Context IS Advisory - Autocomplete Data Theft in Mozilla Firefox

CVE
---
This issue has been assigned CVE number CVE-2009-3370.

Disclosure Timeline
-------------------
8th August 2009 - Initial Discovery and Vendor Notification 8th August 2009 - Vendor Response
27 October 2009 - Vendor Advisory Release
4 November 2009 - Context Information Security Advisory Release

ZDI-10-013: Microsoft Internet Explorer Table Layout Reuse Remote Code Execution Vulnerability

Microsoft has issued an update to correct this vulnerability. More
details can be found at:

http://www.microsoft.com/technet/security/Bulletin/MS10-jan.mspx

-- Disclosure Timeline:
2009-07-14 - Vulnerability reported to vendor
2010-01-21 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability

RealNetworks has issued an update to correct this vulnerability. More
details can be found at:

http://service.real.com/realplayer/security/01192010_player/en/

-- Disclosure Timeline:
2008-04-16 - Vulnerability reported to vendor
2010-01-21 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability

Sun Microsystems has issued an update to correct this vulnerability. More
details can be found at:

http://sunsolve.sun.com/search/document.do?assetkey=1-66-270474-1

-- Disclosure Timeline:
2009-06-23 - Vulnerability reported to vendor
2009-11-04 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:

ZDI-10-041: Apple QuickTime QDM2/QDCA Atom Remote Code Execution Vulnerability

Apple has issued an update to correct this vulnerability. More
details can be found at:

http://support.apple.com/kb/HT4077

-- Disclosure Timeline:
2009-08-10 - Vulnerability reported to vendor
2010-04-02 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by:
<<Previous Next>>

Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!