|
Evaluate risks and protect against the most important vulnerabilities
During the last few years, a
significant increase in attacks
exploiting known vulnerabilities in commonly
used programs such as Adobe Acrobat/Reader, Flash, or Internet Explorer is being observed. This is
currently the primary initial
infection vector used to compromise
computers that have Internet access.
Although there are many ways to
protect against cyber attacks and
threats, governments and corporations need to leverage
the most detailed security
intelligence to evaluate and qualify risks, and protect their
infrastructures and assets.
VUPEN Security provides in-depth binary analysis of
the most significant public
vulnerabilities based on disassembly,
reverse engineering, protocol analysis,
and code auditing.
Only Available for trusted organizations
Because of
the
sensitive
nature of
the
information
provided
through
this
service,
VUPEN
Security
has
defined
strict
eligibility
criteria
for
participants.
VUPEN
Security
solely
reserves
the right
to
determine
whether an
organization
or
corporation
meets the
criteria.
Eligible
organizations
are:
- Trusted
Security
Vendors
Providing
Defensive
Software
or
Hardware
(Antivirus,
IPS, IDS)
-
Governments,
Law
Enforcement,
and CERTs
(countries
members of
NATO,
ANZUS,
ASEAN)
-
Worldwide
Corporations
and MSSPs
(Fortune
1000,
Finance,
Technology,
Research)
BA for Security Vendors
BA for Corporations & MSSPs
BA for Governments & CERTs
Receive More Information
Why subscribe to this service?
With 20 to 25 binary analysis and
private exploits/PoCs released each
month, the
VUPEN In-Depth
Binary Analysis and Exploits service
allows organizations
and corporations to
evaluate and qualify risks, and protect
national
infrastructures and corporate assets
from emerging attacks.
As a
subscriber, you will also have a
direct access to the VUPEN
Vulnerability Research Team,
the most active security team in the
world.
Latest Binary Analysis and
Exploits/PoCs
Released by VUPEN
|
 HP Diagnostics Server "magentservice.exe" Remote Buffer Overflow (CVE-2011-4789) [BA+Code]
|
|
Google Chrome WebKit Engine ComputeOver Function Remote Use-after-free (NO-CVE) [BA+Code]
|
|
Google Chrome WebKit Engine Line Break Processing Remote Use-after-free (NO-CVE) [BA+Code]
|
|
Winamp AVI RIFF INFO Header Size Processing Integer Overflow (CVE-2011-3834) [BA+Code]
|
|
Winamp AVI File RIFF Streams Number Processing Integer Overflow (CVE-2011-3834) [BA+Code]
|
|
SumatraPDF PDF Document Processing Arbitrary NULL Byte Overwrite (NO-CVE) [BA+Code]
|
|
Microsoft Windows Multimedia Library Remote Buffer Overflow (MS12-004 / CVE-2012-0003) [BA+Code]
|
|
McAfee Security-as-a-Service "myCIOScn.dll" Remote Command Injection (NO-CVE) [BA+Code]
|
|
Adobe Acrobat and Reader Image Processing Integer Overflow (APSB12-01 / NO-CVE) [BA+Code]
|
|
IBM Rational Rhapsody ActiveX Control Remote Code Execution (CVE-2011-1391) [BA+Code]
|
|
HP Managed Printing Administration "jobDelivery" Code Execution (CVE-2011-4168) [BA+Code]
|
|
Telnetd "encrypt_keyid()" Keyid Processing Remote Buffer Overflow (CVE-2011-4862) [BA+Code]
|
|
ProFTPD Response Pool Remote Use-After-Free Code Execution (CVE-2011-4130) [BA+Code]
|
|
Novell ZENworks Asset Management Remote File Upload Code Execution (CVE-2011-2653) [BA+Code]
|
|
Microsoft Internet Explorer Time Behavior Remote Use-after-free (MS11-090 / NO-CVE) [BA+Code]
|
|
| 
