Next Page >>
Zero Day
Problem Description:
Security issues were identified and fixed in firefox:
Security researcher regenrecht reported (via TippingPoint's Zero Day
Initiative) a potential reuse of a deleted image frame in Firefox 3.6's
handling of multipart/x-mixed-replace images. Although no exploit was
shown, re-use of freed memory has led to exploitable vulnerabilities
in the past (CVE-2010-0164).
Problem Description:
Security issues were identified and fixed in firefox:
Security researcher regenrecht reported (via TippingPoint's Zero Day
Initiative) a potential reuse of a deleted image frame in Firefox 3.6's
handling of multipart/x-mixed-replace images. Although no exploit was
shown, re-use of freed memory has led to exploitable vulnerabilities
in the past (CVE-2010-0164).
Here's the vendor's reply:
On Dec 02, Huzaifa Sidhpurwala wrote:
>
> * CVE-2012-5611 MySQL (Linux) Stack based buffer overrun PoC Zeroday
> http://seclists.org/fulldisclosure/2012/Dec/4
> https://bugzilla.redhat.com/show_bug.cgi?id=882599
A duplicate of CVE-2012-5579
Already fixed in all stable MariaDB version.
evidence that one of the certificates was used for man-in-the-middle
(MITM) traffic management of domain names that the customer did not
legitimately own or control. This issue was resolved by revoking the
trust for these specific mis-issued certificates (CVE-2013-0743).
Security researcher regenrecht reported, via TippingPoint's Zero Day
Initiative, a use-after-free within the ListenerManager when garbage
collection is forced after data in listener objects have been allocated
in some circumstances. This results in a use-after-free which can
lead to arbitrary code execution (CVE-2013-0754).
So here are the CVEs which Kurt meant to assign, but somehow
that mail never reached the lists.
* CVE-2012-5611 MySQL (Linux) Stack based buffer overrun PoC Zeroday
http://seclists.org/fulldisclosure/2012/Dec/4
https://bugzilla.redhat.com/show_bug.cgi?id=882599
* CVE-2012-5612 MySQL (Linux) Heap Based Overrun PoC Zeroday
http://seclists.org/fulldisclosure/2012/Dec/5
The Zero Day Initiative advisory ZDI-08-088 has several inaccuracies.
Oracle actually fixed this vulnerability as part of the April 2007 Critical
Patch Update and subsequently in ATG_PF.H RUP5 and later. The vulnerability
is a serious SQL injection bug in a Self-Service Web Application database
package that is called and accessible through mod_plsql. Mod_plsql is an
Apache module and part of an Oracle web framework which allows database
packages to dynamically generate web pages. The vulnerable
schema.package.procedure name is APPS.ICXSUPWF.DISPLAYCONTACTS and all
versions 115.6 and prior are vulnerable. When creating intrusion
detection/prevention rules for this vulnerability, the URL will normally
other Mozilla-based products. Some of these bugs showed evidence of
memory corruption under certain circumstances, and we presume that
with enough effort at least some of these could be exploited to run
arbitrary code (CVE-2011-2982).
Security researcher regenrecht reported via TippingPoint's Zero Day
Initiative that a SVG text manipulation routine contained a dangling
pointer vulnerability (CVE-2011-0084).
Mozilla security researcher moz_bug_r_a_4 reported a vulnerability in
event management code that would permit JavaScript to be run in the
ZDI-11-039: BMC PATROL Agent Service Daemon BGS_MULTIPLE_READS Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-039
February 3, 2011
-- CVSS:
10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)
-- Affected Vendors:
ZDI-11-102: PostgreSQL Plus Advanced Server DBA Management Server Remote Authentication Bypass Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-102
March 2, 2011
-- CVSS:
10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)
-- Affected Vendors:
ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-098
December 9, 2009
-- CVE ID:
CVE-2009-3027
-- Affected Vendors:
Symantec
ZDI-08-051: Microsoft Internet Explorer Table Layout Memory Corruption
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-051
August 12, 2008
-- CVE ID:
CVE-2008-2258
-- Affected Vendors:
Microsoft
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap
Corruption
http://www.zerodayinitiative.com/advisories/ZDI-08-049
August 12, 2008
-- CVE ID:
CVE-2008-3021
-- Affected Vendors:
Microsoft
ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-009
January 21, 2010
-- CVE ID:
CVE-2009-0376
-- Affected Vendors:
RealNetworks
ZDI-10-058: Apple Mac OS X ImageIO Framework JPEG2000 Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-058
April 5, 2010
-- CVE ID:
CVE-2010-0505
-- Affected Vendors:
Apple
ZDI-10-041: Apple QuickTime QDM2/QDCA Atom Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-041
April 2, 2010
-- CVE ID:
CVE-2010-0059
-- Affected Vendors:
Apple
ZDI-10-042: Apple QuickTime MediaVideo Compressor Name Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-042
April 2, 2010
-- CVE ID:
CVE-2010-0528
-- Affected Vendors:
Apple
ZDI-09-031: Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-031
June 8, 2009
-- CVE ID:
CVE-2009-1376
-- Affected Vendors:
Adium
ZDI-09-008: Apple QuickTime STSD JPEG Atom Heap Corruption Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-008
January 21, 2009
-- CVE ID:
CVE-2009-0007
-- Affected Vendors:
Apple
ZDI-10-063: Mozilla Firefox Cross Document DOM Node Moving Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-063
April 5, 2010
-- CVE ID:
CVE-2010-1121
-- Affected Vendors:
Mozilla Firefox
ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-027
March 11, 2010
-- Affected Vendors:
Skype
-- Affected Products:
Skype
ZDI-09-074: Multiple Vendor Hummingbird STR Service Stack Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-074
October 28, 2009
-- Affected Vendors:
EMC
OpenText
-- Affected Products:
EMC Documentum eRoom
ZDI-10-082: HP OpenView NNM netmon sel CGI Variable Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-082
May 11, 2010
-- CVE ID:
CVE-2010-1551
-- Affected Vendors:
Hewlett-Packard
ZDI-09-054: Microsoft Office OWC10.Spreadsheet ActiveX msDataSourceObject()
Heap Corruption Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-054
August 11, 2009
-- CVE ID:
CVE-2009-1136
-- Affected Vendors:
Microsoft
ZDI-08-062: Apple QuickTime MDAT Frame Parsing Memory Corruption
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-062
September 9, 2008
-- CVE ID:
CVE-2008-3627
-- Affected Vendors:
Apple
ZDI-10-080: HP Mercury LoadRunner Agent Trusted Input Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-080
May 6, 2010
-- CVE ID:
CVE-2010-1549
-- Affected Vendors:
Hewlett-Packard
ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-076
November 4, 2009
-- Affected Vendors:
Sun Microsystems
-- Affected Products:
Sun Microsystems Java Runtime
ZDI-10-006: RealNetworks RealPlayer GIF Handling Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-006
January 21, 2010
-- CVE ID:
CVE-2009-4242
-- Affected Vendors:
RealNetworks
ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-097
December 9, 2009
-- CVE ID:
CVE-2009-3849
-- Affected Vendors:
Hewlett-Packard
ZDI-10-103: Microsoft Office Excel DBQueryExt Record Unspecified ADO Object Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-103
June 8, 2010
-- CVE ID:
CVE-2010-1253
-- Affected Vendors:
Microsoft
ZDI-10-053: Sun Java Runtime Environment MIDI File metaEvent Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-053
April 5, 2010
-- CVE ID:
CVE-2010-0844
-- Affected Vendors:
Sun Microsystems
Next Page>>
|
