VERISIGN IDEFENSE® VENDOR-COORDINATED PUBLIC VULNERABILITY REPORTS

VERISIGN IDEFENSE<sup>&reg;</sup> VENDOR-COORDINATED PUBLIC VULNERABILITY REPORTS

The Verisign iDefense Vulnerability Team conducts around-the-clock research and notification of vulnerabilities and exploits that target any of the more than 20,000 closely monitored applications, hardware and operating systems.

E-mail an Expert

Explore our list of vendor-coordinated publicly disclosed vulnerabilities:

2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  2003  2002 
VULNERABILITY REPORTS
12.22.05 Linux Kernel Socket Buffer Memory Exhaustion DoS Vulnerability
12.21.05 Macromedia JRun 4 Web Server URL Parsing Buffer Overflow Vulnerability
12.20.05 McAfee Security Center MCINSCTL.DLL ActiveX Control File Overwrite Vulnerability
12.20.05 Qualcomm WorldMail IMAP Server String Literal Processing Overflow Vulnerability
12.16.05 Citrix Program Neighborhood Name Heap Corruption Vulnerability
12.14.05 Trend Micro PC-Cillin Internet Security Insecure File Permission Vulnerability
12.14.05 Trend Micro ServerProtect Crystal Reports ReportServer File Disclosure
12.14.05 Trend Micro ServerProtect EarthAgent Remote DoS Vulnerability
12.14.05 Trend Micro ServerProtect isaNVWRequest.dll Chunked Overflow
12.14.05 Trend Micro ServerProtect relay.dll Chunked Overflow Vulnerability
12.12.05 SCO Unixware Setuid 'uidadmin' Scheme Buffer Overflow Vulnerability
12.09.05 Ethereal OSPF Protocol Dissector Buffer Overflow Vulnerability
12.07.05 Dell TrueMobile 2300 Wireless Broadband Router Authentication Bypass Vulnerability
12.06.05 Ipswitch Collaboration Suite SMTP Format String Vulnerability
12.06.05 Ipswitch IMail IMAP List Command DoS Vulnerability
12.05.05 Multiple Vendor xpdf DCTStream Baseline Heap Overflow Vulnerability
12.05.05 Multiple Vendor xpdf DCTStream Progressive Heap Overflow
12.05.05 Multiple Vendor xpdf JPX Stream Reader Heap Overflow Vulnerability
12.05.05 Multiple Vendor xpdf StreamPredictor Heap Overflow Vulnerability
11.17.05 Qualcomm WorldMail IMAP Server Directory Traversal Vulnerability
11.15.05 Multiple Vendor GTK+ gdk-pixbuf XPM Loader Heap Overflow Vulnerability
11.15.05 Multiple Vendor Insecure Call to CreateProcess() Vulnerability
11.11.05 Multiple Vendor Lynx Command Injection Vulnerability
11.10.05 Stack Overflow in Veritas Netbackup Enterprise Server
11.10.05 Tikiwiki tiki-editpage Arbitrary File Exposure Vulnerability
11.10.05 Tikiwiki tiki-user_preferences Command Injection Vulnerability
11.04.05 Clam AntiVirus Cabinet-file handling Denial of Service Vulnerability
11.04.05 Clam AntiVirus tnef_attachment() DoS Vulnerability
10.28.05 Multiple Vendor chmlib CHM File Handling Buffer Overflow Vulnerability
10.24.05 SCO Openserver authsh 'Home' Buffer Overflow Vulnerability
10.24.05 SCO Openserver backupsh 'Home' Buffer Overflow Vulnerability
10.24.05 SCO Unixware Setuid ppp prompt Buffer Overflow Vulnerability
10.20.05 Multiple Vendor Ethereal srvloc Buffer Overflow Vulnerability
10.20.05 Symantec Norton AntiVirus DiskMountNotify Local Privilege Escalation
10.20.05 Symantec Norton AntiVirus LiveUpdate Local Privilege Escalation
10.13.05 Multiple Vendor wget/curl NTLM Username Buffer Overflow Vulnerability
10.13.05 Multiple Vendor XMail 'sendmail' Recipient Buffer Overflow Vulnerability
10.11.05 Microsoft Distributed Transaction Controller Packet Relay DoS Vulnerability
10.11.05 Microsoft Distributed Transaction Controller TIP DoS Vulnerability
10.10.05 Kaspersky Anti-Virus Engine CHM File Parser Buffer Overflow Vulnerability
10.10.05 SGI IRIX runpriv Design Error Vulnerability
10.04.05 Symantec AntiVirus Scan Engine Web Service Buffer Overflow Vulnerability
10.04.05 UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability
09.30.05 RealNetworks RealPlayer/HelixPlayer RealPix Format String Vulnerability
09.19.05 Clam AntiVirus Win32-UPX Buffer Overflow Vulnerability
09.19.05 Clam AV Win32-FSG File Handling DoS Vulnerability
09.13.05 Linksys WRT54G 'restore.cgi' Configuration Modification Design Error Vulnerability
09.13.05 Linksys WRT54G 'upgrade.cgi' Firmware Upload Design Error Vulnerability
09.13.05 Linksys WRT54G Management Interface DoS Vulnerability
09.13.05 Linksys WRT54G Router Remote Administration apply.cgi Buffer Overflow Vulnerability
09.13.05 Linksys WRT54G Router Remote Administration Fixed Encryption Key Vulnerability
09.09.05 GNU Mailutils 0.6 imap4d 'search' Format String Vulnerability
09.01.05 3Com Network Supervisor Directory Traversal Vulnerability
09.01.05 Novell NetMail IMAPD Command Continuation Request Heap Overflow
08.29.05 Adobe Version Cue VCNative Arbitrary File Overwrite Vulnerability
08.29.05 Adobe Version Cue VCNative Arbitrary Library Loading Vulnerability
08.29.05 Symantec AntiVirus 9 Corporate Edition Local Privilege Escalation Vulnerability
08.09.05 AWStats ShowInfoURL Remote Command Execution Vulnerability
08.05.05 EMC Navisphere Manager Directory Traversal Vulnerability
08.05.05 Multiple Vendor Ethereal AFP Protocol Dissector Format String Vulnerability
08.02.05 CA BrightStor ARCserve Backup Agent for MS SQL Server Buffer Overflow
07.14.05 Sophos Anti-Virus Zip File Handling DoS Vulnerability
07.12.05 Microsoft Word 2000 and Word 2002 Font Parsing Buffer Overflow Vulnerability
07.05.05 Adobe Acrobat Reader UnixAppOpenFilePerform() Buffer Overflow Vulnerability
06.29.05 Clam AntiVirus ClamAV Cabinet File Handling DoS Vulnerability
06.29.05 Clam AntiVirus ClamAV MS-Expand File Handling DoS Vulnerability
06.23.05 RealNetworks RealPlayer RealText Parsing Heap Overflow Vulnerability
06.23.05 Veritas Backup Exec Agent CONNECT_CLIENT_AUTH Buffer Overflow Vulnerability
06.23.05 Veritas Backup Exec Agent Error Status Remote DoS Vulnerability
06.23.05 Veritas Backup Exec Remote Agent NDMLSRVR.DLL DoS Vulnerability
06.23.05 Veritas Backup Exec Server Remote Registry Access Vulnerability
06.22.05 IpSwitch WhatsUp Professional 2005 (SP1) SQL Injection Vulnerability
06.22.05 Multiple Vendor Cacti config_settings.php Remote Code Execution Vulnerability
06.22.05 Multiple Vendor Cacti Multiple SQL Injection Vulnerabilities
06.22.05 Multiple Vendor Cacti Remote File Inclusion Vulnerability
06.14.05 Microsoft Outlook Express NNTP Response Parsing Buffer Overflow Vulnerability
06.14.05 Microsoft Outlook Web Access Cross-Site Scripting Vulnerability
06.14.05 Microsoft Windows Interactive Training Buffer Overflow Vulnerability
06.14.05 Multiple Vendor Telnet Client Information Disclosure Vulnerability
05.25.05 GNU Mailutils 0.6 imap4d FETCH Commad Resource Consumption DoS Vulnerability
05.25.05 GNU Mailutils 0.6 imap4d fetch_io Heap overflow Vulnerability
05.25.05 GNU Mailutils 0.6 imap4d Format String Vulnerability
05.25.05 GNU Mailutils 0.6 mail header_get_field_name() Buffer Overflow Vulnerability
05.24.05 Ipswitch IMail IMAP LOGIN Remote Buffer Overflow Vulnerabilities
05.24.05 Ipswitch IMail IMAP LSUB DoS Vulnerability
05.24.05 Ipswitch IMail IMAP SELECT Command DoS Vulnerability
05.24.05 Ipswitch IMail IMAP STATUS Remote Buffer Overflow Vulnerability
05.24.05 Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerability
05.04.05 Apple Mac OS X vpnd Server_id Buffer Overflow Vulnerability
05.03.05 Apple Mac OS X Server NeST -target Buffer Overflow Vulnerability
04.26.05 Citrix Program Neighborhood Agent Arbitrary Shortcut Creation Vulnerability
04.26.05 Citrix Program Neighborhood Agent Buffer Overflow
04.26.05 MySQL MaxDB Webtool Remote 'If' Stack Overflow Vulnerability
04.25.05 MySQL MaxDB Webtool Remote Lock-Token Stack Overflow Vulnerability
04.25.05 MySQL MaxDB Webtool Remote Stack Overflow Vulnerability
04.18.05 McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability
04.12.05 Microsoft Internet Explorer DHTML Engine Race Condition Vulnerability
04.12.05 Microsoft MSHTA Script Execution Vulnerability
04.12.05 Microsoft Windows CSRSS.EXE Stack Overflow Vulnerability
04.12.05 Microsoft Windows Internet Explorer Long Hostname Heap Corruption Vulnerability
04.11.05 Computer Associates BrightStor ARCserve Backup UniversalAgent Buffer Overflow
04.08.05 Microsoft Multiple E-Mail Client Address Spoofing Vulnerability
04.07.05 SGI IRIX gr_osview File Overwrite Vulnerability
04.07.05 SGI IRIX gr_osview Information Disclosure Vulnerability
04.06.05 IBM Lotus Domino Server Web Service DoS Vulnerability
04.05.05 Computer Associates eTrust Intrusion Detection System CPImportKey DoS Vulnerability
03.31.05 PHP getimagesize() Multiple Denial of Service Vulnerabilities
03.28.05 Multiple Telnet Client env_opt_add() Buffer Overflow Vulnerability
03.28.05 Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability
03.21.05 Mac OS X CF_CHARSET_PATH Buffer Overflow Vulnerability
03.14.05 MySQL MaxDB Web Agent Multiple Denial of Service Vulnerabilities
03.10.05 Ipswitch Collaboration Suite IMAP EXAMINE Buffer Overflow Vulnerability
03.02.05 Computer Associates License Client and Server Invalid Command Buffer Overflow
03.02.05 Computer Associates License Client PUTOLF Buffer Overflow
03.02.05 Computer Associates License Client PUTOLF Directory Traversal
03.02.05 Computer Associates License Client/Server GCR Checksum Buffer Overflow
03.02.05 Computer Associates License Client/Server GCR Network Buffer Overflow
03.02.05 Computer Associates License Client/Server GETCONFIG Buffer Overflow
03.01.05 RealNetworks RealPlayer .smil Buffer Overflow Vulnerability
02.28.05 KPPP Privileged File Descriptor Leak Vulnerability
02.28.05 Mozilla Firefox and Mozilla Browser Out Of Memory Heap Corruption Design Error
02.25.05 WU-FTPD File Globbing Denial of Service Vulnerability
02.23.05 Sun Solaris kcms_configure Arbitrary File Corruption Vulnerability
02.22.05 phpBB Group phpBB Arbitrary File Disclosure Vulnerability
02.22.05 phpBB Group phpBB2 Arbitrary File Unlink Vulnerability
02.21.05 Multiple PuTTY SFTP Client Packet Parsing Integer Overflow Vulnerabilities
02.21.05 Multiple Unix/Linux Vendor cURL/libcURL Kerberos Authentication Buffer Overflow
02.21.05 Multiple Unix/Linux Vendor cURL/libcURL NTLM Authentication Buffer Overflow
02.11.05 ZoneAlarm 5.1 Invalid Pointer Dereference Vulnerability
02.10.05 Computer Associates BrightStor ARCserve Backup UniversalAgent Backdoor
02.10.05 IBM AIX ipl_varyon Local Buffer Overflow Vulnerability
02.10.05 IBM AIX lspath Local File Access Vulnerability
02.10.05 IBM AIX netpmon Local Buffer Overflow Vulnerability
02.09.05 CA BrightStor ARCserve Backup v11 Discovery Service Remote Buffer Overflow
02.08.05 IBM AIX auditselect Local Format String Vulnerability
02.07.05 IBM AIX chdev Local Format String Vulnerability
02.07.05 SquirrelMail S/MIME Plugin Command Injection Vulnerability
01.26.05 Openswan XAUTH/PAM Buffer Overflow Vulnerability
01.24.05 DataRescue Interactive Disassembler Pro Buffer Overflow Vulnerability
01.20.05 3Com OfficeConnect Wireless 11g AP Information Disclosure Vulnerability
01.19.05 MySQL MaxDB Web Agent Multiple Denial of Service Vulnerabilities
01.18.05 Multiple Unix/Linux Vendor Xpdf makeFileKey2 Stack Overflow
01.17.05 AWStats Remote Command Execution Vulnerability
01.17.05 Multiple Vendor ImageMagick .psd Image File Decode Heap Overflow Vulnerability
01.14.05 Exim dns_buld_reverse() Buffer Overflow Vulnerability
01.13.05 Apple iTunes Playlist Parsing Buffer Overflow Vulnerability
01.13.05 MySQL MaxDB WebAgent websql logon Buffer Overflow Vulnerability
01.13.05 SGI IRIX inpview Design Error Vulnerability
01.07.05 Exim auth_spa_server() Buffer Overflow Vulnerability
01.07.05 Exim host_aton() Buffer Overflow Vulnerability

Defense Vulnerability Contributor Program
The iDefense Vulnerability Contributor Program (VCP) compensates individuals who provide iDefense with advance notification of unpublished vulnerabilities and exploit code. The VCP focuses on vulnerability research submissions, presented to iDefense by the general public, defining new vulnerabilities and exploits uncovered in prominent enterprise-level software and infrastructure components.

Verisign iDefense Awarded Frost &amp; Sullivan 2012 Vulnerability Research Product Differentiation Excellence

Contact Us

Learn more about Verisign’s iDefense Security Intelligence Services and how to improve your security strategy.

E-mail an Expert