VUPEN Security News and Threats Watch 24x7

	About Us \| Contact Us

VUPEN Free Resources

VUPEN Security Advisories

Security News and Threats

Public Zero-day Threats

Mailinglist and Newsletters

Explanation of Terms

Advanced Search Engine

VUPEN Security News & Threats Watch

VUPEN Team Won the Pwn2Own 2012 Competition at CanSecWest

VUPEN Vulnerability Research Team has won the 1st place at the Pwn2Own 2012 security competition by creating and showing extremely sophisticated zero-day exploits which fully compromised up-to-date Google Chrome and Microsoft Internet Explorer browsers, and bypassed all security protections and exploit mitigation technologies including DEP, ASLR and sandboxes.

To demonstrate its in-depth knowledge of software vulnerabilities and advanced exploit development capabilities, VUPEN team has also written, on-site during the event and in less than 24 hours, 6 distinct code execution exploits for previously patched Internet Explorer, Firefox, and Safari vulnerabilities on Windows and Mac OS X operating systems.

Published : 2012-03-09 22:14:24 UTC

Security Updates of the Week: Microsoft, Adobe, Google, Mozilla

This week Microsoft has released 9 security advisories and fixed multiple vulnerabilities that can lead to code execution, information disclosure, security bypass and privilege escalation. The flaws affect Windows, Internet Explorer, SharePoint, Visio, and Silverlight.

At the same time Adobe has released security updates for Flash, Shockwave, and RoboHelp.

Google and Mozilla have also updated their web browsers to fix remotely exploitable vulnerabilities.

Applying this updates is thus highly recommended.

Published : 2012-02-16 22:05:14 UTC

Microsoft Fixed 4 Vulnerabilities Affecting Windows

Microsoft has released 4 security advisories and addressed 4 vulnerabilities affecting Windows TCP/IP, Mail and Windows Meeting Space, Active Directory, and Kernel-Mode Drivers.

MS11-083: This critical vulnerability can be exploited remotely to execute arbitrary code by sending a continuous flow of specially crafted UDP packets to a closed port on a target system. Remote exploitation seems difficult due to the large number of packets that should be sent to the target. Local exploitation remains possible but unlikely.

MS11-084: This moderate vulnerability affects the Windows Kernel-mode drivers when processing a malformed TrueType font file. Exploitation can cause a denial of service e.g. by tricking a user into opening a malformed file.

MS11-085: This important vulnerability is a library loading issue affecting the Windows Mail and Windows Meeting Space. Exploitation is trivial from a technical point of view, however, the attack vector involves tricking a user into opening an .eml or .wcinv file from an untrusted remote file system location or WebDAV share.

MS11-086: This important vulnerability affecting Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS) when configured to use LDAP over SSL (not by default). Exploitation can allow unauthorized authentication to a domain but requires a revoked certificate that is associated with a valid domain account.

As usual, applying these updates is highly recommended.

Published : 2011-11-08 22:41:17 UTC

BA & Exploits News

Latest Binary Analysis
and Exploits Released
By VUPEN Security:

OpenSSL "asn1_d2i_read_bio()" DER Data Processing Memory Corruption (CVE-2012-2110)

PHP CGI Script Arguments Processing Remote Command Injection (CVE-2012-1823)

Samba Remote Procedure Call (RPC) Unmarshalling Code Execution (CVE-2012-1182)

VideoLAN VLC Media Player RTSP Processing Remote Heap Overflow (CVE-2012-1776)

Microsoft Windows Common Controls Stack Buffer Overflow (MS12-027 / CVE-2012-0158)