VUPEN Security Zero-Day Monitor - Latest Zero Day Vulnerabilities and Exploits

	Contact \| Site en Français

Vulnerabilities & Threats

VUPEN Security Advisories

Linux Security Advisories

Malware Advisories

Security Research

Threat Watch Blog

Zero-Day Monitor

Search Engine

Mailing List & RSS

VUPEN Security Zero-Day Monitor

VUPEN Security Zero-Day Monitor is a comprehensive resource for up-to-date information on the latest
zero-day threats, risks and vulnerabilities. Please send your comments to : team@vupen.com

Microsoft DirectX DirectShow Remote Code Execution Vulnerability

A vulnerability has been identified in Microsoft DirectX on Windows, which could be exploited by remote attackers to compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-05-29 -> 39 Days of Exposure

Microsoft Windows Gzip Libraries Code Execution Vulnerability

A vulnerability has been identified in Microsoft Windows and Windows Services for UNIX, which could be exploited by attackers to compromise a vulnerable system.

Rated as : High Risk

Disclosure Date : 2009-03-26 -> 102 Days of Exposure

Trend Micro Products ObjRemoveCtrl Buffer Overflow Vulnerabilities

Multiple vulnerabilities have been identified in various Trend Micro products, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system.

Rated as : Critical

Disclosure Date : 2008-07-29 -> 343 Days of Exposure

RealPlayer Unspecified Data Processing Buffer Overflow Vulnerability

A vulnerability has been identified in RealPlayer, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system.

Rated as : Critical

Disclosure Date : 2008-01-03 -> 550 Days of Exposure

Microsoft Web Proxy Auto-Discovery Information Disclosure Vulnerability

A vulnerability has been identified in Microsoft Windows, which could be exploited by attackers to gain knowledge of sensitive information.

Rated as : Low Risk

Disclosure Date : 2007-12-04 -> 580 Days of Exposure

Kazaa Altnet Download Manager ActiveX Control Buffer Overflow Issue

A vulnerability has been identified in Kazaa, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system.

Rated as : Critical

Disclosure Date : 2007-10-03 -> 643 Days of Exposure

Altnet Download Manager ActiveX Control "Install()" Buffer Overflow Issue

A vulnerability has been identified in Altnet Download Manager, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system.

Rated as : Critical

Disclosure Date : 2007-10-03 -> 643 Days of Exposure

Ask Toolbar "ShortFormat" Property Remote Code Execution Vulnerability

A vulnerability has been identified in Ask Toolbar, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system.

Rated as : Critical

Disclosure Date : 2007-09-25 -> 651 Days of Exposure

Microsoft Windows CFileFind Class "FindFile()" Buffer Overflow Vulnerability

A vulnerability has been identified in Microsoft Windows, which could be exploited by attackers to take complete control of an affected system.

Rated as : Moderate Risk

Disclosure Date : 2007-09-18 -> 658 Days of Exposure

Microsoft DirectX Media SDK "SourceUrl" Remote Buffer Overflow Vulnerability

A vulnerability has been identified in Microsoft DirectX Media SDK, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system.

Rated as : Critical

Disclosure Date : 2007-08-13 -> 694 Days of Exposure

Recently fixed zero-day vulnerabilities:

Microsoft IIS WebDAV Remote Authentication Bypass Vulnerability

A vulnerability has been identified in Microsoft Internet Information Services (IIS), which could allow remote attackers to bypass security restrictions and gain knowledge of sensitive information.

Rated as : Moderate Risk

Disclosure Date : 2009-05-18 -> 22 Days of Exposure

Apple QuickTime PICT Poly Tag Parsing Heap Overflow Vulnerability

A vulnerability has been identified in Apple QuickTime, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-05-25 -> 8 Days of Exposure

Microsoft Office PowerPoint Remote Code Execution Vulnerability (MS09-017)

A vulnerability has been identified in Microsoft Office PowerPoint, which could be exploited by attackers to compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-04-03 -> 39 Days of Exposure

Adobe Reader and Acrobat JavaScript Memory Corruption Vulnerabilities

Two vulnerabilities have been identified in Adobe Reader and Acrobat, which could be exploited by attackers to compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-04-28 -> 14 Days of Exposure

Microsoft Windows Data Handling Local Privilege Escalation (MS09-012)

A vulnerability has been identified in Microsoft Windows, which could be exploited by authenticated attackers to gain elevated privileges.

Rated as : Moderate Risk

Disclosure Date : 2008-04-18 -> 361 Days of Exposure

Microsoft Windows WordPad Converter Code Execution (MS09-010)

A vulnerability has been identified in Microsoft Windows, which could be exploited by remote attackers to compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2008-12-09 -> 125 Days of Exposure

Microsoft Office Excel Invalid Object Access Code Execution (MS09-009)

A vulnerability has been identified in Microsoft Office Excel, which could be exploited by attackers to compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-02-24 -> 48 Days of Exposure

Mozilla Firefox and Seamonkey XSLT Memory Corruption Vulnerability

A vulnerability has been identified in Mozilla Firefox and Seamonkey, which could be exploited by remote attackers to cause a denial of service or potentially compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-03-26 -> 1 Day of Exposure

Adobe Acrobat and Reader JBIG2 Handling Code Execution Vulnerabilities

Multiple vulnerability have been identified in Adobe Acrobat and Reader, which could be exploited by attackers to compromise a vulnerable system.

Rated as : Critical

Disclosure Date : 2009-02-20 -> 26 Days of Exposure

Microsoft SQL Server "sp_replwritetovarbin()" Buffer Overflow (MS09-004)

A vulnerability has been identified in Microsoft SQL Server 2000, which could be exploited by malicious users to compromise a vulnerable system.

Rated as : Moderate Risk

Disclosure Date : 2008-12-09 -> 63 Days of Exposure

Vulnerability Alerting

Free 14-Day Trial

Latest News

VUPEN Security Research
Discovered Critical Flaws
in Adobe Acrobat and MS
Office Word

VUPEN Security Research
Discovered Critical Flaws
in ACDSee Products

VUPEN Discovered Two
Critical Vulnerabilities in
Novell GroupWise 8 / 7

Microsoft Patched 14
Office PowerPoint Flaws

Adobe Reader / Acrobat
Vulnerabilities Disclosed

More Informations

Copyright 2003-2009 © VUPEN.COM - Privacy Policy