|
|
Prev week |
Colapse all |
Post message
TPTI-11-11: Adobe Shockwave Lnam Chunk Parsing Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) TPTI-11-08: Adobe Shockwave iml32.dll DEMX Chunk GIF Parsing Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) TPTI-11-08: Adobe Shockwave iml32.dll DEMX Chunk GIF Parsing Remote Code Execution Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-11-08 June 15, 2011 -- CVE ID: CVE-2011-2111 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Sh [ more ] [ reply ] TPTI-11-07: Adobe Shockwave iml32.dll CSWV Chunk Parsing Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) TPTI-11-07: Adobe Shockwave iml32.dll CSWV Chunk Parsing Remote Code Execution Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-11-07 June 15, 2011 -- CVE ID: CVE-2011-2111 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Pla [ more ] [ reply ] TPTI-11-06: Oracle Java ICC Profile rcs2 Tag Parsing Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) TPTI-11-06: Oracle Java ICC Profile rcs2 Tag Parsing Remote Code Execution Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-11-06 June 15, 2011 -- CVE ID: CVE-2011-0862 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Oracle -- Affected Products: Oracle Java Runtime - [ more ] [ reply ] ZDI-11-222: Adobe Shockwave Shockwave 3d Asset.x32 DEMX Chunk Substructure Count Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-222: Adobe Shockwave Shockwave 3d Asset.x32 DEMX Chunk Substructure Count Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-222 June 15, 2011 -- CVE ID: CVE-2011-2113 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected P [ more ] [ reply ] ZDI-11-221: Adobe Shockwave Shockwave 3d Asset.x32 DEMX 0xFFFFFF45 Field Parsing Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-221: Adobe Shockwave Shockwave 3d Asset.x32 DEMX 0xFFFFFF45 Field Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-221 June 15, 2011 -- CVE ID: CVE-2011-2114 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected P [ more ] [ reply ] ZDI-11-220: Adobe Shockwave Director File rcsL Chunk Multiple Opcode Parsing Remote Code Execution Vulnerability 2011-06-15 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-220: Adobe Shockwave Director File rcsL Chunk Multiple Opcode Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-220 June 15, 2011 -- CVE ID: CVE-2011-0335 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Produ [ more ] [ reply ] Re: [Full-disclosure] XSS Vulnerability in Redmine 1.0.1 to 1.1.1 2011-06-15 Henri Salo (henri nerv fi) On Wed, Apr 06, 2011 at 01:22:06PM +0300, Netsparker Advisories wrote: > Information > -------------------- > Name : XSS vulnerability in Redmine > Software : all Redmine versions from 1.0.1 to 1.1.1 > Vendor Homepage : http://www.redmine.org > Vulnerability Type : Cross-Site Scripting > Severit [ more ] [ reply ] NSFOCUS SA2011-01 : Microsoft Internet Explorer Link Property Processing Memory Corruption Vulnerability 2011-06-15 NSFOCUS Security Team (security nsfocus com) NSFOCUS Security Advisory(SA2011-01) Microsoft Internet Explorer Link Property Processing Memory Corruption Vulnerability Release Date: 2011-06-15 CVE ID: CVE-2011-1250 http://www.nsfocus.com/en/advisories/1101.html Affected Software and System: ============================= Microsoft Internet [ more ] [ reply ] HTB23005: Multiple XSS in N-13 News 2011-06-15 advisory htbridge ch Vulnerability ID: HTB23005 Reference: http://www.htbridge.ch/advisory/multiple_xss_in_n_13_news.html Product: N-13 News Vendor: Network-13 ( http://network-13.com/ ) Vulnerable Version: 4.0.1 and probably prior Tested on: 4.0.1 Vendor Notification: 25 May 2011 Vulnerability Type: XSS (Cross Site [ more ] [ reply ] HTB23010: Multiple XSS & Local File Inclusion in Free Simple CMS 2011-06-15 advisory htbridge ch Vulnerability ID: HTB23010 Reference: http://www.htbridge.ch/advisory/multiple_xss_in_free_simple_cms.html Product: Free Simple CMS Vendor: Dustin Cowell Enterprises ( http://www.freesimplesoft.com/ ) Vulnerable Version: 1.0 and probably prior Tested on: 1.0 Vendor Notification: 25 May 2011 Vulne [ more ] [ reply ] HTB23008: Multiple XSS & CSRF (Cross-Site Request Forgery) in miniblog 2011-06-15 advisory htbridge ch Vulnerability ID: HTB23008 Reference: http://www.htbridge.ch/advisory/multiple_xss_in_miniblog.html Product: miniblog Vendor: spyka Web Group ( http://www.spyka.net ) Vulnerable Version: 1.0.0 and probably prior Tested on: 1.0.0 Vendor Notification: 25 May 2011 Vulnerability Type: XSS (Cross Site [ more ] [ reply ] HTB23004: Multiple Vulnerabilities in e107 2011-06-15 advisory htbridge ch Vulnerability ID: HTB23004 Reference: http://www.htbridge.ch/advisory/multiple_vulnerabilities_in_e107_1.html Product: e107 website system Vendor: e107 ( http://e107.org/ ) Vulnerable Version: 0.7.25 and probably prior Tested on: 0.7.25 Vendor Notification: 25 May 2011 Vulnerability Type: Multip [ more ] [ reply ] HTB23012: Gogago YouTube Video Converter ActiveX Control "Download()" Buffer Overflow Vulnerability 2011-06-15 advisory htbridge ch Vulnerability ID: HTB23012 Reference: http://www.htbridge.ch/advisory/gogago_youtube_video_converter_activex_c ontrol_download_buffer_overflow_vulnerability.html Product: Gogago YouTube Video Converter Vendor: Gogago ( http://www.gogago.net/ ) Vulnerable Version: 1.1.6 (3/29/2011) and probably prio [ more ] [ reply ] [BGA - SignalSEC Advisory]:Adobe Shockwave Player Remote Code Execution 2011-06-14 signaladvisory gmail com Affected Vendors: Adobe Affected Products: Shockwave Player CVE ID: CVE-2011-2122 Risk Level: High Vulnerability: Memory Corruption Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Shockwave Player. User interac [ more ] [ reply ] ZDI-11-219: Adobe Acrobat Reader 3difr.x3d Multimedia Playing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-219: Adobe Acrobat Reader 3difr.x3d Multimedia Playing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-219 June 14, 2011 -- CVE ID: CVE-2011-2094 -- CVSS: 9, (AV:N/AC:L/Au:N/C:P/I:P/A:C) -- Affected Vendors: Adobe -- Affected Products: Adobe Reader [ more ] [ reply ] ZDI-11-218: Adobe Acrobat Reader tesselate.x3d Multimedia Playing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-218: Adobe Acrobat Reader tesselate.x3d Multimedia Playing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-218 June 14, 2011 -- CVE ID: CVE-2011-2095 -- CVSS: 9, (AV:N/AC:L/Au:N/C:P/I:P/A:C) -- Affected Vendors: Adobe -- Affected Products: Adobe Re [ more ] [ reply ] ZDI-11-217: Adobe Shockwave Font Structure Parsing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-217: Adobe Shockwave Font Structure Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-217 June 14, 2011 -- CVE ID: CVE-2011-2109 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Playe [ more ] [ reply ] ZDI-11-216: Adobe Shockwave rcsL Chunk 16-bit Field Parsing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-216: Adobe Shockwave rcsL Chunk 16-bit Field Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-216 June 14, 2011 -- CVE ID: CVE-2011-0335 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockw [ more ] [ reply ] ZDI-11-215: Adobe Shockwave DEMX Chunk Multiple Field Parsing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-215: Adobe Shockwave DEMX Chunk Multiple Field Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-215 June 14, 2011 -- CVE ID: CVE-2011-2112 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shoc [ more ] [ reply ] ZDI-11-208: Adobe Shockwave rcsL Parsing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-208: Adobe Shockwave rcsL Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-208 June 14, 2011 -- CVE ID: CVE-2011-2109 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Player -- Tipp [ more ] [ reply ] ZDI-11-214: Adobe Shockwave CASt Chunk Parsing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-214: Adobe Shockwave CASt Chunk Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-214 June 14, 2011 -- CVE ID: CVE-2011-2112 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Player - [ more ] [ reply ] ZDI-11-213: Adobe Shockwave rcsL Trusted Offset Chunk Processing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-213: Adobe Shockwave rcsL Trusted Offset Chunk Processing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-213 June 14, 2011 -- CVE ID: CVE-2011-2114 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe S [ more ] [ reply ] ZDI-11-212: Adobe Shockwave KEY* Chunk Invalid Size Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-212: Adobe Shockwave KEY* Chunk Invalid Size Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-212 June 14, 2011 -- CVE ID: CVE-2011-2111 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Play [ more ] [ reply ] ZDI-11-211: Adobe Shockwave Shockwave 3d Asset.x32 DEMX Chunk 0xFFFFFF49 Field Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-211: Adobe Shockwave Shockwave 3d Asset.x32 DEMX Chunk 0xFFFFFF49 Field Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-211 June 14, 2011 -- CVE ID: CVE-2011-2113 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Pro [ more ] [ reply ] ZDI-11-210: Adobe Shockwave rcsL Chunk Parsing Misallocation Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-210: Adobe Shockwave rcsL Chunk Parsing Misallocation Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-210 June 14, 2011 -- CVE ID: CVE-2011-2112 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shock [ more ] [ reply ] ZDI-11-209: Adobe Shockwave rcsL Substructure Parsing Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-209: Adobe Shockwave rcsL Substructure Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-209 June 14, 2011 -- CVE ID: CVE-2011-0335 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwave Pl [ more ] [ reply ] ZDI-11-207: Adobe Shockwave tSAC Chunk String Termination Remote Code Execution Vulnerability 2011-06-14 ZDI Disclosures (zdi-disclosures tippingpoint com) ZDI-11-207: Adobe Shockwave tSAC Chunk String Termination Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-207 June 14, 2011 -- CVE ID: CVE-2011-2118 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Adobe -- Affected Products: Adobe Shockwav [ more ] [ reply ] CORE-2011-0203 - MS HyperV Persistent DoS Vulnerability 2011-06-14 CORE Security Technologies Advisories (advisories coresecurity com) Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ MS HyperV Persistent DoS Vulnerability 1. *Advisory Information* Title: MS HyperV Persistent DoS Vulnerability Advisory ID: CORE-2011-0203 Advisory URL: http://www.coresecurity.com/content/hyperv-vmbus-persistent-do [ more ] [ reply ] |
|
Privacy Statement |
http://dvlabs.tippingpoint.com/advisory/TPTI-11-11
June 15, 2011
-- CVE ID:
CVE-2011-2116
-- CVSS:
7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)
-- Affected Vendors:
Adobe
-- Affected Products:
Adobe Shockwave Player
-- Ti
[ more ] [ reply ]