VeriSign, Inc.® US Home | Worldwide Sites | Site Map
Products & Services Solutions Support About VeriSign Login for existing VeriSign customers
You Are Here: US Home > VeriSign iDefense Security Intelligence Service > Current Intelligence > Vulnerability Advisories > 2007

Vulnerability Advisories - 2007

ADVISORY 12.24.07 : Novell ZENworks Endpoint Security Management Local Privilege Escalation Vulnerability
ADVISORY 12.18.07 : ClamAV libclamav MEW PE File Integer Overflow Vulnerability
ADVISORY 12.17.07 : Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Vulnerability
ADVISORY 12.11.07 : Microsoft Internet Explorer JavaScript setExpression Heap Corruption Vulnerability
ADVISORY 12.11.07 : Microsoft DirectX 7 and 8 DirectShow Stack Buffer Overflow Vulnerability
ADVISORY 11.14.07 : Apple Mac OS X AppleTalk Socket IOCTL Kernel Stack Buffer Overflow Vulnerability
ADVISORY 11.14.07 : Apple Mac OS X AppleTalk mbuf Kernel Heap Overflow Vulnerability
ADVISORY 11.14.07 : Apple Mac OS X AppleTalk ASP Message Kernel Heap Overflow Vulnerability
ADVISORY 11.14.07 : Apple Mac OS X Mach Port Inheritance Privilege Escalation Vulnerability
ADVISORY 11.12.07 : WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Vulnerability
ADVISORY 11.12.07 : Novell NetWare Client NWFILTER.SYS Local Privilege Escalation Vulnerability
ADVISORY 11.09.07 : AOL AmpX ActiveX Control Multiple Buffer Overflow Vulnerabilities
ADVISORY 11.09.07 : IBM Informix Dynamic Server DBLANG Directory Traversal Vulnerability
ADVISORY 11.07.07 : Oracle 10g R2 PITRIG_DROPMETADATA Buffer Overflow Vulnerability
ADVISORY 11.06.07 : Microsoft DebugView Privilege Escalation Vulnerability
ADVISORY 11.05.07 : Apple QuickTime Panorama Sample Atom Heap Buffer Overflow Vulnerability
ADVISORY 11.02.07 : Sun Microsystems Solaris srsexec Format String Vulnerability
ADVISORY 10.31.07 : Macrovision InstallShield Update Service ActiveX Unsafe Method Vulnerability
ADVISORY 10.31.07 : Symantec Altiris Deployment Solution TFTP/MTFTP Service Directory Traversal Vulnerability
ADVISORY 10.30.07 : IBM AIX swcons Local Arbitrary File Access Vulnerability
ADVISORY 10.30.07 : IBM AIX 5.2 crontab BSS Buffer Overflow Vulnerability
ADVISORY 10.30.07 : IBM AIX dig dns_name_fromtext Integer Underflow Vulnerability
ADVISORY 10.30.07 : IBM AIX lqueryvg Stack Buffer Overflow Vulnerability
ADVISORY 10.30.07 : IBM AIX lquerypv Stack Buffer Overflow Vulnerability
ADVISORY 10.30.07 : IBM AIX ftp domacro Parameter Buffer Overflow Vulnerability
ADVISORY 10.30.07 : IBM AIX bellmail Stack Buffer Overflow Vulnerability
ADVISORY 10.25.07 : Trend Micro Tmxpflt.sys IOCTL 0xa0284403 Buffer Overflow Vulnerability
ADVISORY 10.23.07 : IBM Lotus Notes Client TagAttributeListCopy Buffer Overflow Vulnerability
ADVISORY 10.23.07 : IBM Lotus Domino IMAP Buffer Overflow Vulnerability
ADVISORY 10.11.07 : Multiple Vendor FLAC Library Multiple Integer Overflow Vulnerabilities
ADVISORY 10.10.07 : Kaspersky Web Scanner ActiveX Format String Vulnerability
ADVISORY 10.09.07 : Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow
ADVISORY 10.02.07 : Multiple Vendor X Font Server Multiple Vulnerabilities
ADVISORY 10.02.07 : Sun Microsystems Solaris FIFO FS Information Disclosure Vulnerability
ADVISORY 09.27.07 : Computer Associates BrightStor HSM r11.5 Multiple Vulnerabilities
ADVISORY 09.25.07 : Linux Kernel ALSA snd_mem_proc_read Information Disclosure Vulnerability
ADVISORY 09.20.07 : CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability
ADVISORY 09.20.07 : CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities
ADVISORY 09.19.07 : Multiple Vendor ImageMagick Multiple Integer Overflow Vulnerabilities
ADVISORY 09.19.07 : Multiple Vendor ImageMagick Off-By-One Vulnerability
ADVISORY 09.19.07 : Multiple Vendor ImageMagick Multiple Denial of Service Vulnerabilities
ADVISORY 09.19.07 : Multiple Vendor ImageMagick Sign Extension Vulnerability
ADVISORY 09.17.07 : Multiple Vendor OpenOffice TIFF File Parsing Multiple Integer Overflow Vulnerabilities
ADVISORY 09.11.07 : Microsoft Windows 2000 Agent URL Canonicalizing Stack Based Buffer Overflow Vulnerability
ADVISORY 08.30.07 : Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow Vulnerabilities
ADVISORY 08.27.07 : Motorola Timbuktu Pro Directory Traversal Vulnerability
ADVISORY 08.27.07 : Motorola Timbuktu Multiple Buffer Overflow Vulnerabilities
ADVISORY 08.21.07 : Trend Micro ServerProtect Multiple Buffer Overflow Vulnerabilities
ADVISORY 08.21.07 : Trend Micro ServerProtect RPCFN_SYNC_TASK Integer Overflow Vulnerability
ADVISORY 08.20.07 : Check Point Zone Labs Multiple Products Privilege Escalation Vulnerability
ADVISORY 08.20.07 : Check Point Zone Labs VSDATANT Multiple IOCTL Privilege Escalation Vulnerabilities
ADVISORY 08.20.07 : Trend Micro SSAPI Long Path Buffer Overflow Vulnerability
ADVISORY 08.16.07 : IBM DB2 Universal Database Multiple Race Condition Vulnerabilities
ADVISORY 08.16.07 : IBM DB2 Universal Database Directory Traversal Vulnerability
ADVISORY 08.16.07 : IBM DB2 Universal Database Multiple File Creation Vulnerabilities
ADVISORY 08.16.07 : IBM DB2 Universal Database Directory Creation Vulnerability
ADVISORY 08.16.07 : IBM DB2 Universal Database Multiple Untrusted Search Path Vulnerabilities
ADVISORY 08.16.07 : IBM DB2 Universal Database buildDasPaths Buffer Overflow Vulnerability
ADVISORY 08.15.07 : ESRI ArcSDE Numeric Literal Buffer Overflow Vulnerability
ADVISORY 08.14.07 : Microsoft Windows Vista Sidebar RSS Feeds Gadget Cross Site Scripting Vulnerability
ADVISORY 08.14.07 : Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability
ADVISORY 08.09.07 : Hewlett-Packard OpenView Operations OVTrace Buffer Overflow Vulnerabilities
ADVISORY 08.07.07 : Hewlett-Packard HP-UX Remote ldcconn Buffer Overflow Vulnerability
ADVISORY 08.07.07 : Apple Mac OS X mDNSResponder HTTP Request Heap Overflow Vulnerability
ADVISORY 07.26.07 : IBM AIX pioout Arbitrary Library Loading Vulnerability
ADVISORY 07.26.07 : IBM AIX capture Terminal Control Sequence Buffer Overflow Vulnerability
ADVISORY 07.26.07 : IBM AIX ftp gets() Multiple Buffer Overflow Vulnerabilities
ADVISORY 07.24.07 : Computer Associates AntiVirus CHM File Handling DoS Vulnerability
ADVISORY 07.24.07 : Computer Associates eTrust Intrusion Detection CallCode ActiveX Control Code Execution Vulnerability
ADVISORY 07.23.07 : Ipswitch Instant Messaging Server Denial of Service Vulnerability
ADVISORY 07.19.07 : Opera Software Opera Web Browser BitTorrent Dangling Pointer Vulnerability
ADVISORY 07.19.07 : Multiple Vendor Multiple Product URI Handler Input Validation Vulnerability
ADVISORY 07.18.07 : Microsoft DirectX RLE Compressed Targa Image File Heap Overflow Vulnerability
ADVISORY 07.18.07 : Ipswitch IMail Server 2006 Multiple IMAP Buffer Overflow Vulnerabilities
ADVISORY 07.17.07 : IBM Tivoli Provisioning Manager for OS Deployment TFTP Blocksize DoS Vulnerability
ADVISORY 07.17.07 : Computer Associates Alert Notification Server Multiple Buffer Overflow Vulnerabilities
ADVISORY 07.16.07 : Trend Micro OfficeScan Management Console Authorization Bypass Vulnerability
ADVISORY 07.16.07 : Trend Micro OfficeScan Session Cookie Buffer Overflow Vulnerability
ADVISORY 07.12.07 : Red Hat Enterprise Linux init.d XFS Script chown Race Condition Vulnerability
ADVISORY 07.11.07 : SquirrelMail G/PGP Plugin deleteKey() Command Injection Vulnerability
ADVISORY 07.11.07 : SquirrelMail G/PGP Plugin gpg_check_sign_pgp_mime() Command Injection Vulnerability
ADVISORY 07.11.07 : SquirrelMail G/PGP Plugin gpg_recv_key() Command Injection Vulnerability
ADVISORY 07.11.07 : Symantec Backup Exec RPC Remote Heap Overflow Vulnerability
ADVISORY 07.11.07 : Symantec AntiVirus symtdi.sys Local Privilege Escalation Vulnerability
ADVISORY 07.11.07 : SquirrelMail G/PGP Plugin gpg_help.php Local File Inclusion Vulnerability
ADVISORY 07.11.07 : Apple QuickTime SMIL File Processing Integer Overflow Vulnerability
ADVISORY 07.09.07 : WinPcap NPF.SYS Local Privilege Escalation Vulnerability
ADVISORY 07.09.07 : Multiple Vendor GIMP Multiple Integer Overflow Vulnerabilities
ADVISORY 07.09.07 : IBM AIX libodm ODMPATH Stack Overflow Vulnerability
ADVISORY 06.26.07 : RealNetworks RealPlayer/HelixPlayer SMIL wallclock Stack Overflow Vulnerability
ADVISORY 06.26.07 : Multiple Vendor Kerberos kadmind Rename Principal Buffer Overflow Vulnerability
ADVISORY 06.21.07 : Ingres Database Multiple Heap Corruption Vulnerabilities
ADVISORY 06.18.07 : Cerulean Studios Trillian UTF-8 Word Wrap Heap Overflow Vulnerability
ADVISORY 06.14.07 : Apache MyFaces Tomahawk JSF Framework Cross-Site Scripting (XSS) Vulnerability
ADVISORY 06.13.07 : Multiple Vendor libexif Integer Overflow Heap Corruption Vulnerability
ADVISORY 06.12.07 : YaBB Forum member.vars CRLF Injection Privilege Escalation Vulnerability
ADVISORY 06.12.07 : Microsoft License Manager and urlmon.dll COM Object Interaction Invalid Memory Access Vulnerability
ADVISORY 06.07.07 : Linux Kernel cpuset tasks Information Disclosure Vulnerability
ADVISORY 06.05.07 : Symantec Ghost Multiple Denial of Service Vulnerabilities
ADVISORY 06.01.07 : Symantec VERITAS Storage Foundation Administration Service DoS Vulnerability
ADVISORY 05.25.07 : Sun Java System Web Proxy Multiple Buffer Overflow Vulnerabilities
ADVISORY 05.24.07 : Apple Computer Mac OS X pppd Plugin Loading Privilege Escalation Vulnerability
ADVISORY 05.23.07 : Opera Software Opera Web Browser Transfer Item Pop-up Menu Stack Overflow Vulnerability
ADVISORY 05.14.07 : Samba SAMR Change Password Remote Command Injection Vulnerability
ADVISORY 05.10.07 : Sun Microsystems Solaris SRS Proxy Core srsexec Arbitrary File Read Vulnerability
ADVISORY 05.10.07 : Novell NetMail NMDMC Buffer Overflow Vulnerability
ADVISORY 05.10.07 : Apple Darwin Streaming Proxy Multiple Vulnerabilities
ADVISORY 05.09.07 : Symantec Norton Internet Security 2006 COM Object Security ByPass Vulnerability
ADVISORY 05.09.07 : Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability
ADVISORY 05.08.07 : Microsoft Word RTF File Parsing Heap Corruption Vulnerability
ADVISORY 05.08.07 : Microsoft Exchange Server 2000 IMAP Literal Processing DoS Vulnerability
ADVISORY 05.08.07 : Microsoft Excel Filter Record Code Execution Vulnerability
ADVISORY 05.08.07 : McAfee Security Center IsOldAppInstalled ActiveX Buffer Overflow Vulnerability
ADVISORY 05.07.07 : Sun Microsystems Solaris ACE_SETACL Integer Signedness DoS Vulnerability
ADVISORY 05.02.07 : LiveData Protocol Server Heap Overflow Vulnerability
ADVISORY 04.30.07 : Cerulean Studios Trillian Multiple IRC Vulnerabilities
ADVISORY 04.27.07 : VMware Workstation Shared Folders Directory Traversal Vulnerability
ADVISORY 04.26.07 : Novell eDirectory NCP Fragment Denial of Service Vulnerability
ADVISORY 04.26.07 : Symantec Norton Ghost 10 Service Manager Buffer Overflow Vulnerability
ADVISORY 04.26.07 : Symantec Norton Ghost 10 Recovery Points Insecure Password Storage Vulnerability
ADVISORY 04.20.07 : Check Point Zone Labs SRESCAN IOCTL Local Privilege Escalation Vulnerability
ADVISORY 04.17.07 : McAfee VirusScan On-Access Scanner Long Unicode File Name Buffer Overflow
ADVISORY 04.17.07 : McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability
ADVISORY 04.16.07 : Clam AntiVirus ClamAV CAB File Unstore Buffer Overflow Vulnerability
ADVISORY 04.16.07 : Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability
ADVISORY 04.12.07 : Hewlett Packard HP-UX Remote pfs_mountd.rpc Buffer Overflow Vulnerability
ADVISORY 04.11.07 : Apache HTTPD suEXEC Multiple Vulnerabilities
ADVISORY 04.10.07 : Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability
ADVISORY 04.10.07 : Adobe Macromedia ColdFusion MX7 Insecure File Permissions Vulnerability
ADVISORY 04.09.07 : AOL AIM and ICQ File Transfer Path-Traversal Vulnerability
ADVISORY 04.04.07 : Kaspersky AntiVirus SysInfo ActiveX Control Information Disclosure Vulnerability
ADVISORY 04.04.07 : Kaspersky Internet Security Suite klif.sys Heap Overflow Vulnerability
ADVISORY 04.04.07 : Enterasys Networks Multiple NetSight Products Multiple Vulnerabilities
ADVISORY 04.04.07 : ESRI ArcSDE Buffer Overflow Vulnerability
ADVISORY 04.03.07 : Microsoft Windows WMF Triggerable Kernel Design Error DoS Vulnerability
ADVISORY 04.03.07 : Multiple Vendor Kerberos kadmind Buffer Overflow Vulnerability
ADVISORY 04.03.07 : Multiple Vendor X Server BDF Font Parsing Integer Overflow Vulnerability
ADVISORY 04.03.07 : Multiple Vendor X Server fonts.dir File Parsing Integer Overflow Vulnerability
ADVISORY 04.03.07 : Multiple Vendor X Server XC-MISC Extension Memory Corruption Vulnerability
ADVISORY 04.02.07 : Hewlett-Packard Mercury Quality Center ActiveX Control ProgColor Buffer Overflow Vulnerability
ADVISORY 03.31.07 : Multiple Vendor ImageMagick DCM and XWD Buffer Overflow Vulnerabilities
ADVISORY 03.31.07 : IBM Tivoli Provisioning Manager for OS Deployment Multiple Vulnerabilities
ADVISORY 03.29.07 : IBM Lotus Sametime JNILoader Arbitrary DLL Load Vulnerability
ADVISORY 03.28.07 : IBM Lotus Domino Web Access Cross Site Scripting Vulnerability
ADVISORY 03.28.07 : IBM Lotus Domino Server LDAP Request Invalid DN Message Heap Overflow Vulnerability
ADVISORY 03.23.07 : Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability
ADVISORY 03.23.07 : DataRescue IDA Pro Remote Debugger Server Authentication Bypass Vulnerability
ADVISORY 03.16.07 : Multiple Vendor libwpd Multiple Buffer Overflow Vulnerabilities
ADVISORY 03.15.07 : Horde Project Cleanup Script Arbitrary File Deletion Vulnerability
ADVISORY 03.14.07 : Trend Micro Antivirus UPX Parsing Kernel Divide by Zero Vulnerability
ADVISORY 03.07.07 : Ipswitch IMail Server 2006 Multiple ActiveX Control Buffer Overflow Vulnerabilities
ADVISORY 03.05.07 : Apple QuickTime Color Table ID Heap Corruption Vulnerability
ADVISORY 03.02.07 : Kaspersky AntiVirus UPX File Decompression DoS Vulnerability
ADVISORY 02.27.07 : Computer Associates eTrust Intrusion Detection Denial of Service Vulnerability
ADVISORY 02.23.07 : Mozilla Network Security Services SSLv2 Client Integer Underflow Vulnerability
ADVISORY 02.23.07 : Mozilla Network Security Services SSLv2 Server Stack Overflow Vulnerability
ADVISORY 02.22.07 : Multiple Vendor SupportSoft SmartIssue ActiveX Control Buffer Overflow Vulnerability
ADVISORY 02.22.07 : VeriSign ConfigChk ActiveX Control Buffer Overflow Vulnerability
ADVISORY 02.22.07 : IBM DB2 Universal Database DB2INSTANCE File Creation Vulnerability
ADVISORY 02.22.07 : IBM DB2 Universal Database Multiple Privilege Escalation Vulnerabilities
ADVISORY 02.16.07 : Trend Micro ServerProtect Web Interface Authorization Bypass Vulnerability
ADVISORY 02.15.07 : Multiple Vendor ClamAV CAB File Denial of Service Vulnerability
ADVISORY 02.15.07 : Multiple Vendor ClamAV MIME Parsing Directory Traversal Vulnerability
ADVISORY 02.13.07 : Microsoft 'wininet.dll' FTP Reply Null Termination Heap Corruption Vulnerability
ADVISORY 02.13.07 : Hewlett-Packard HP-UX SLSd Arbitrary File Creation Vulnerability
ADVISORY 02.07.07 : Trend Micro TmComm Local Privilege Escalation Vulnerability
ADVISORY 02.07.07 : Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability
ADVISORY 02.07.07 : RARLabs Unrar Password Prompt Buffer Overflow Vulnerability
ADVISORY 02.02.07 : Blue Coat Systems WinProxy CONNECT Method Heap Overflow Vulnerability
ADVISORY 01.26.07 : Multiple Vendor libchm Page Block Length Memory Corruption Vulnerability
ADVISORY 01.11.07 : Computer Associates BrightStor ARCserve Backup RPC Engine PFC Request Buffer Overflow Vulnerability
ADVISORY 01.09.07 : Microsoft Excel Invalid Column Heap Corruption Vulnerability
ADVISORY 01.09.07 : Microsoft Excel Long Palette Heap Overflow Vulnerability
ADVISORY 01.09.07 : Microsoft Windows VML Element Integer Overflow Vulnerability
ADVISORY 01.09.07 : Adobe Macromedia ColdFusion Source Code Disclosure Vulnerability
ADVISORY 01.09.07 : Multiple Vendor X Server Render Extension ProcRenderAddGlyphs Memory Corruption Vulnerability
ADVISORY 01.09.07 : Multiple Vendor X Server DBE Extension ProcDbeGetVisualInfo Memory Corruption Vulnerability
ADVISORY 01.09.07 : Multiple Vendor X Server DBE Extension ProcDbeSwapBuffers Memory Corruption Vulnerability
ADVISORY 01.05.07 : Opera Software Opera Web Browser JPG Image DHT Marker Heap Corruption Vulnerability
ADVISORY 01.05.07 : Opera Software Opera Web Browser createSVGTransformFromMatrix Object Typecasting Vulnerability
ADVISORY 01.05.07 : Kaspersky Antivirus Scan Engine PE File Denial of Service Vulnerability


Need more information?
Speak with a service representative at 650-426-5310 Request information online


Contact Us
Please contact sales at
650-426-5310 or
submit your inquiry online.
VeriSign iDefense Security Intelligence Service
Security Intelligence Service Levels
Alerts, Reports, and Briefings
Methodology
Research and Response Teams
Current Intelligence
Topical Research Reports
Vulnerability Advisories
Malicious Code Advisories
Information Center
Security Intelligence Webcasts
Proactive Security Intelligence
Intelligence for Patch Management
Early Threat Warning
Contact Us Careers Legal Notices Privacy Repository ©1995-2007 VeriSign, Inc. All rights reserved.
Products & Services  :  Solutions  :  Support  :  About VeriSign  :  Existing Customers
US Home  :  Worldwide Sites  :  Site Map  :  Search
VeriSign (Nasdaq: VRSN) operates intelligent infrastructure services that enable and protect billions of interactions across the world's voice and data networks. VeriSign offerings include SSL Certificates, two-factor authentication, identity protection, managed network security, public key infrastructure (PKI), security consulting, information management, as well as solutions for intelligent communications, commerce, and content. VeriSign is also building next-generation service offerings for emerging opportunities such as RFID-enabled supply chains, VoIP technology, and digital-content distribution over mobile and broadband networks.