31.08.2010 Detailed

OpenOffice integer overflows   Integer overflows in Impress.

30.08.2010 Detailed

Cisco IOS XR BGP DoS   Router may issue invalid announce on receiving prefix with malformed attribute.   Deepin TFTP Server directory traversal   Directory traversal on put / get operations.   RealNetworks RealPlayer security vulnerabilities   Memory corruption on FLV and IVR formats parsing.

KDE okular buffer overflow   Dynamic memory overflow on PDB files processing.

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Multiple browsers certificates validation weakness   Wildmasks in certificates issued to IP address are enabled.

29.08.2010 Detailed

6! Apple Mac OS X memory corruption   Memory corruption in Core Graphics on PDf files parsing.

26.08.2010 Detailed

8! Adobe Shockwave Player multiple security vulnerabilities   Multiple memory corruptions. 7! Trend Micro Internet Security ActiveX code execution   Code execution via extSetOwner   GFI WebMonitor crossite scripting   Crossite scripting in administration interface.

HP MagCloud iPad App unauthorized data access

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Autonomy KeyView multiple security vulnerabilities updated since 29.07.2010   Buffer overflows, integer overflows, memory corruptions.

25.08.2010 Detailed

7! Novell iPrint multiple security vulnerabilities updated since 08.08.2010   Buffer overflows, unauthorized access, code execution, etc in iPrint Client Browser Plugin and iPrint Server.   GNU gv symbolic links vulnerabilities   Symbolic links vulnerability on temporary files creation.

23.08.2010 Detailed

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

21.08.2010 Detailed

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

20.08.2010 Detailed

6! SonicWALL SSL-VPN ActiveX format string vulnerability   End-Point Interrogator/Installer ActiveX format string vulnerability in AuthCredential method.   Muse media player buffer overflow   Buffer overflow on .pls and .m3u playlists parsing :)

19.08.2010 Detailed

8! Apple iTunes multiple security uvlnerabilities   Multiple memory corruptions on different media formats parsing, privilege escalations, code exeecution from network shares. 6! Microsoft Windows Kerberos tickets spoofing   It's possible to logon with any account by manipulating network traffic.   Triologic Media Player buffer overflow   Buffer overflow on .m3u playlists parsing.

Rekonq crossite scripting   Crossite scriptin via error messages.

FreeBSD / NetBSD Coda file system information leak   Kernel memory information leak via IOCTL.

Apache mod_proxy_http information leak updated since 14.06.2010   Under some conditions, server reply may be sent to wrong client.

17.08.2010 Detailed

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.   Easy FTP Server buffer overflow updated since 25.02.2010   Buffer overflow on oversized CWD, DELE, STOR, RNFR, RMD, XRMD command.

16.08.2010 Detailed

7! Cisco IOS DoS   Resources exhaustion via half open connections. 7! Microsoft Office multiple security vulnerabilities updated since 11.08.2010   Multiple memory corruptions on different data type parsing in Word and Excel.   HP OpenView Network Node Manager code execution

D-Link WBR-2310 wireless router DoS   Crash on oversized HTTP request.

SimpleWebServer DoS   Crash on HTTP headers parsing.

SWFTools integer overflows   Integer overflows on PNG and JPEG files.

Opera file download dialog spoofing   It's possible to place windows on the top of file download dialog and to close it right before user's click.

14.08.2010 Detailed

9! Apple Webkit / Safari multiple security vulnerabilities updated since 08.08.2010   Information leak, crossdomain access, buffer overflows, memory corruptions.   libpurple library / Pidgin DoS   NULL pointer dereference on OSCAR protocol messages parsing (ICQ, AIM)   Baby ASP Web Server / FTP Server / POP Server DoS   Large number of established connections causes server to crash.

Quick 'n Easy WEB Server / Quick 'n Easy FTP Server DoS   Large number of established connections causes server to crash.

gmime library buffer overflow

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

kvirc IRC client multiple security vulnerabilities updated since 29.06.2010   Directory traversal, format string vulnerability.

TurboFTP FTP Server directory traversal updated since 20.06.2010   Directory traversal via mkdir and move command.

libmikmod multiple buffer overflows updated since 08.02.2010   Multiple overflows on Impulse Tracker and Ultratracker format parsing.

12.08.2010 Detailed

6! PDF documents signature spoofing   Document is hashed in a way it's possible to created 2 differently looging documents with same signature. 6! SAP Crystal Reports 2008 integer overflow   Integer overflow on GIOP message processing. 6! Cisco Firewall Services Module / Adaptive Security Appliances / Application Control Engine multiple DoS conditions updated since 05.08.2010   DoS on SunRPC and SIP protocols inspection, DoS on TCP, RTSP, TLS connections and IKE.

NetWordDLS Finger Server buffer overflow   Oversized finger request buffer overflows.

Novell Sentinel Log Manager code execution   fileDownload and reportPluginUpload servlets allow privileged operations to be executed without authentication.

Novell ZENWorks Remote Management Agent code execution   Weak authentication allows code execution.

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

w3m browser certificate spoofing   It's possible to spoof certificate CN by using null character.

2Wire rotuers session hijacking   Weak PRNG implementation allows to hijack web administration session by guessing session id.

Adobe Coldfusion administration panel directory traversals   Multiple directory traversal vulnerabilities.

11.08.2010 Detailed

9! Microsoft Internet Explorer multiple security vulnerabilities   Multiple memory corruptions, crossite access. 8! Adobe Flash Player multiple security vulnerabilities   Multiple memory corruptions. 8! Microsoft XML Core Services memory corruption   Memory corruption on server's response pasrsing in XMLHTTP.

8! Microsoft Windows Schannel memory corruption updated since 10.03.2009   Memory corruption on TLS/SSL certificate parsing, certificate spoofing, connection hijacking.

7! Microsoft .Net and Silverlight security vulnerabilities   Memory corruption, code execution.

7! Microsoft Windows SMB/CIFS service multiple security vulnerabilities   Buffer overflow, privilege escalation, DoS.

7! Microsoft Windows DirectShow memory corruption   Memory corruption on MP3 file parsing.

6! Microsoft Windows TCP/IP stack security vulnerabilities   DoS, privilege escalation.

6! Microsoft Windows kernel multiple security vulnerabilities updated since 10.08.2010   Memory corruptions, privilege escalations, DoS.

glpng library buffer overflow   Heap buffer overflow in pngLoadRawF() function.

Microsoft Windows Tracing Feature for Services security vulnerabilities   Weak permissions on registry keys, buffer overflow on registry keys reading.

Microsoft Windows Cinepak codec memory corruption   Memory corruption on data decompression.

Cisco Wireless Control System crossite scripting updated since 09.08.2010   Crossite scripting and SQL injection in Web interface.

Microsoft Windows MovieMaker memory corruption   Memory corruption on project file parsing.

09.08.2010 Detailed

6! Security vulnerabilities in HP ProCurve switches   Unauthorized access, information leak, DoS.   Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.   EMC Disk Library DoS

QQ Computer Manager DoS   Crash on IOCTL processing.

socat buffer overflow   Buffer overflow on command line arguments parsing.

08.08.2010 Detailed

6! Citrix Presentation Server Client buffer overflow updated since 05.08.2010   Buffer overflow on ICA server response parsing.   Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.   RSA enVision DoS

05.08.2010 Detailed

6! VxWorks weak wuthentication   Weak password hashing algorythm with large collision probability. 6! Akamai Download Manager code execution   It's possible to automatically download and execute file.   Quick Easy FTP Server buffer overflow   USER command buffer overflow.

KMeleon buffer overflow   Buffer overflow on oversized URL.

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

cabextract code execution

Apple Safari DoS   Hang on oversized URL

03.08.2010 Detailed

6! Microsoft Windows shortcuts code execution   Code execution on shortcut icon displaying.