|
Evaluate risks and protect against the most important vulnerabilities
During the last few years, a
significant increase of attacks
exploiting vulnerabilities in commonly
used programs such as Adobe Acrobat and
Reader or Microsoft Office is being observed. This is
currently the primary initial
infection vector used to compromise
computers that have Internet access.
Although there are many ways to
protect against these attacks and
threats, governments and corporations need to leverage
the most detailed security
intelligence to evaluate and qualify risks, and protect their
infrastructures and assets.
VUPEN Security provides in-depth binary analysis of
the most significant public
vulnerabilities based on disassembly,
reverse engineering, protocol analysis,
and code auditing.
Only Available for trusted organizations
Because of
the
sensitive
nature of
the
information
provided
through
this
service,
VUPEN
Security
has
defined
strict
eligibility
criteria
for
participants.
VUPEN
Security
solely
reserves
the right
to
determine
whether an
organization
or
corporation
meets the
criteria.
Eligible
organizations
are:
- Trusted
Security
Vendors
Providing
Defensive
Software
or
Hardware
(Antivirus,
IPS, IDS)
-
Governments,
Law
Enforcement,
and CERTs
(countries
members of
NATO,
ANZUS,
ASEAN)
-
Worldwide
Corporations
and MSSPs
(Fortune
1000,
Finance,
Technology,
Research)
BA for Security Vendors
BA for Corporations & MSSPs
BA for Governments & CERTs
Receive More Information
Why subscribe to this service?
With 20 to 25 binary analysis and
private exploits/PoCs released each
month, the
VUPEN In-Depth
Binary Analysis and Exploits service
allows organizations
and corporations to
evaluate and qualify risks, and protect
national
infrastructures and corporate assets
from emerging attacks.
As a
subscriber, you will also have a
direct access to the VUPEN
Vulnerability Research Team,
the most active security team in the
world.
Latest Binary Analysis and
Exploits/PoCs
Released by VUPEN
|
 Microsoft Office Word RTF Parsing Buffer Overflow (MS10-056 / CVE-2010-1902)
|
|
Microsoft Office Word RTF Parsing Engine Memory Corruption (MS10-056 / CVE-2010-1901)
|
|
IBM solidDB Handshake Request Processing Buffer Overflow (CVE-2010-2771)
|
|
Microsoft Office Word Record Parsing Buffer Overflow (MS10-056 / CVE-2010-1900)
|
|
HP OpenView Network Node Manager "execvp_nc()" Buffer Overflow (CVE-2010-2703)
|
|
Mozilla Firefox Plugin Parameter Array Dangling Pointer (MFSA2010-48 / CVE-2010-2755)
|
|
Microsoft Internet Explorer Table Element Buffer Overflow (MS10-053 / CVE-2010-2560)
|
|
Microsoft Internet Explorer "CIframeElement" Object
Use-after-free (MS10-053 / CVE-2010-2558)
|
|
Microsoft Internet Explorer "boundElements" Uninitialized Memory (MS10-053 / CVE-2010-2557)
|
|
Microsoft Internet Explorer "OnPropertyChange_Src()"
Use-after-free (MS10-053 / CVE-2010-2556)
|
|
Microsoft Windows Shortcut LNK Handling Code Execution (MS10-046 / CVE-2010-2568)
|
|
Microsoft Outlook SMB Attachment Handling Code Execution (MS10-045 / CVE-2010-0266)
|
|
Microsoft Office Access ActiveX Uninitialized Variable (MS10-044 / CVE-2010-1881)
|
|
Microsoft Office Access ActiveX Memory Corruption (MS10-044 / CVE-2010-0814)
|
|
Winamp Player FLV Dimensions Data Processing Integer Overflow (NO-MATCH)
|
|
| 
