A critical and unpatched vulnerability affecting Microsoft Windows is currently being exploited in the wild via various Chineese web sites.
The exploit takes advantage of a buffer overflow vulnerability in the "MSVidCtl.dll" ActiveX control and allows code execution via a specially crafted web page.
Until a patch is available, VUPEN recommends setting a kill bit for the CLSID {0955AC62-BF2E-4CBA-A2B9-A63F772D46CF}.
The in-depth binary analysis of the vulnerability and a remote code execution exploit are available through the VUPEN Exploits & PoCs Service.
Published : 2009-07-06 11:26:52 UTC
VUPEN Discovered Vulnerabilities in Adobe and MS Office
VUPEN Security Research team discovered two critical vulnerabilities which have now been patched.
The first issue is caused by a heap overflow vulnerability affecting all versions of Adobe Acrobat and Reader. The second vulnerability is due to a buffer overflow affecting Microsoft Office Word.
Security updates have been released by Adobe and Microsoft.
The list of vulnerabilities discovered by VUPEN Security Research is available here.
Published : 2009-06-10 19:30:16 UTC
Novell GroupWise Vulnerabilities Fixed
Novell released Hot Patches for GroupWise 7 and 8 to address multiple vulnerabilities which could be exploited by remote attackers to bypass security restrictions, conduct phishing attacks, cause a denial of service or compromise a vulnerable system.
The most critical flaws were discovered by VUPEN Security and are buffer overflows affecting the Novell GroupWise Internet Agent (GWIA). Exploitation allows the execution of arbitrary code with SYSTEM privileges and is possible remotely and without authentication.
Apply Novell GroupWise 7.03 Hot Patch 3 (HP3) and GroupWise 8.0 Hot Patch 2 (HP2) or later.