eEye Digital Security
  • Login to the eEye Business Client Portal
  • Shop for eEye Products
  • Read the eEye Blog
  • Subscribe to eEye RSS Feeds
  • Follow eEye on Twitter
  • Follow eEye of Facebook
Resources

Security Advisories

The eEye Digital Security Research Team is dedicated to discovering new vulnerabilities and responsibly reporting them to the vendor via CERT coordination. This advisory information is meant to serve as a "time capsule" of the eEye Research vulnerabilities from the past and is intended solely as technical, in-depth analysis of the various vulnerabilities discovered by the eEye Research Team. This advisory information provided here adheres to eEye's responsible disclosure policy and supports the Company's goal to eliminate security vulnerabilities within computing networks.

11/8/2011
eEye Audit ID 2499 Remote Privilege Escalation

7/10/2009
eEye Retina Wireless Scanner .RWS File Processing Memory Corruption

11/20/2007
BitDefender Online Scanner 8 Double Decode Heap Overflow

11/15/2007
Multiple Vulnerabilities In .FLAC File Format and Various Media Applications

10/11/2007
CA BrightStor ARCserve Backup Server Arbitrary Pointer Dereference

9/20/2007
Multiple Vulnerabilities in CA ARCserve for Laptops and Desktops

8/14/2007
Windows Metafile AttemptWrite Heap Overflow

8/14/2007
VGX.DLL Compressed Content Heap Overflow Vulnerability

7/10/2007
Microsoft Publisher 2007 Arbitrary Pointer Dereference

7/5/2007
Sun Java WebStart JNLP Stack Buffer Overflow Vulnerability

6/8/2007
Yahoo! Webcam ActiveX Controls Multiple Buffer Overflows

4/10/2007
Windows Vista CSRSS Dangling Process Pointer Privilege Escalation

4/10/2007
Windows VDM Zero Page Race Condition Privilege Escalation

12/7/2006
Intel Network Adapter Driver Local Privilege Escalation

12/5/2006
Adobe Download Manager AOM Stack Buffer Overflow Vulnerability

11/14/2006
Workstation Service NetpManageIPCConnect Buffer Overflow

9/12/2006
Internet Explorer Compressed Content URL Heap Overflow Vulnerability #2

8/24/2006
Internet Explorer Compressed Content URL Heap Overflow Vulnerability

8/16/2006
IBM eGatherer ActiveX Code Execution Vulnerability

8/5/2006
McAfee Subscription Manager Stack Buffer Overflow

7/13/2006
McAfee ePolicy Orchestrator Remote Compromise

7/13/2006
D-Link Router UPNP Stack Overflow

6/12/2006
Symantec Remote Management Stack Buffer Overflow

5/11/2006
Apple QuickTime FPX Integer Overflow

5/9/2006
Microsoft Distributed Transaction Coordinator Denial of Service

5/9/2006
Microsoft Distributed Transaction Coordinator Heap Overflow

4/25/2006
Juniper Networks SSL-VPN Client Buffer Overflow

4/21/2006
Winny Remote Buffer Overflow Vulnerability

2/14/2006
Windows Media Player BMP Heap Overflow

1/10/2006
Apple QuickTime STSD Atom Heap Overflow

1/10/2006
Apple iTunes (QuickTime.qts) Heap Overflow

1/10/2006
Apple QuickTime QTIF Stack Overflow

1/10/2006
Apple QuickTime Malformed GIF Heap Overflow

1/10/2006
Windows Embedded Open Type (EOT) Font Heap Overflow Vulnerability

12/13/2005
Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability

11/10/2005
RealPlayer Zipped Skin File Buffer Overflow II

11/10/2005
RealPlayer Data Packet Stack Overflow

11/8/2005
Windows Metafile Multiple Heap Overflows

11/8/2005
Windows Metafile SetPalette Entries Heap Overflow Vulnerability (Graphics Rendering Engine Vulnerability)

11/4/2005
Macromedia Flash Player Improper Memory Access Vulnerability

10/11/2005
Vulnerability in DirectShow Could Allow Remote Code Execution

10/11/2005
Microsoft Distributed Transaction Coordinator Memory Modification Vulnerability

10/11/2005
Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability

10/11/2005
MDT2DD.DLL COM Object Uninitialized Heap Memory Vulnerability

6/23/2005
RealPlayer vidplin.dll AVI Processing Heap Overflow

6/14/2005
HTML Help File Parsing Buffer Overflow

3/2/2005
Computer Associates License Manager Remote Vulnerabilities

2/8/2005
Windows SMB Client Transaction Response Handling Vulnerability

1/11/2005
Windows ANI File Parsing Buffer Overflow

11/9/2004
Kerio Personal Firewall Multiple IP Options Denial of Service

10/27/2004
RealPlayer Zipped Skin File Buffer Overflow

10/12/2004
Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability

10/12/2004
Windows VDM #UD Local Privilege Escalation

10/1/2004
RealPlayer pnen3260.dll Heap Overflow

6/15/2004
IBM acpRunner Activex Dangerous Methods Vulnerability

6/15/2004
"IBM Access Support" (eGatherer) Activex Dangerous Methods Vulnerability

6/10/2004
RealPlayer embd3260.dll Error Response Heap Overflow

5/12/2004
Symantec Multiple Firewall NBNS Response Processing Stack Overflow

5/12/2004
Symantec Multiple Firewall DNS Response Denial-of-Service

5/12/2004
Symantec Multiple Firewall NBNS Response Remote Heap Corruption

5/12/2004
Symantec Multiple Firewall Remote DNS KERNEL Overflow

5/2/2004
Apple QuickTime (QuickTime.qts) Heap Overflow

5/1/2004
ANALYSIS: Sasser Worm

4/23/2004
Symantec Multiple Firewall TCP Options Denial of Service

4/19/2004
"Yahoo! Mail" Account Filter Overflow Hijack

4/13/2004
Microsoft DCOM RPC Memory Leak

4/13/2004
Microsoft DCOM RPC Race Condition

4/13/2004
Windows Expand-Down Data Segment Local Privilege Escalation

4/13/2004
Windows VDM TIB Local Privilege Escalation

4/13/2004
Windows Metafile Heap Overflow

3/18/2004
Internet Security Systems PAM ICQ Server Response Processing Vulnerability

2/26/2004
RealSecure/BlackICE Server Message Block (SMB) Processing Overflow

2/18/2004
Zone Labs SMTP Processing Buffer Overflow

2/10/2004
Microsoft ASN.1 Library Length Overflow Heap Corruption

2/10/2004
Microsoft ASN.1 Library Bit String Heap Corruption

9/10/2003
Microsoft RPC Heap Corruption Vulnerability - Part II

9/3/2003
VBE Document Property Buffer Overflow

9/3/2003
Microsoft WordPerfect Document Converter Buffer Overflow

8/20/2003
Internet Explorer Object Data Remote Execution Vulnerability

8/11/2003
ANALYSIS: Blaster Worm

7/23/2003
Windows MIDI Decoder (QUARTZ.DLL) Heap Corruption

6/4/2003
Internet Explorer Object Type Property Overflow

3/19/2003
XDR Integer Overflow

1/25/2003
ANALYSIS: Microsoft SQL Server Sapphire Worm

12/16/2002
Macromedia Shockwave Flash Malformed Header Overflow #2

12/11/2002
PNG (Portable Network Graphics) Deflate Heap Corruption Vulnerability

11/12/2002
Macromedia ColdFusion/JRun Remote SYSTEM Buffer Overflow

8/8/2002
Macromedia Shockwave Flash Malformed Header Overflow

7/10/2002
Remote PGP Outlook Encryption Plug-in Vulnerability

6/12/2002
Windows 2000 and NT4 IIS .HTR Remote Buffer Overflow

5/22/2002
ANALYSIS: Spida or Digispid.B.Worm SQL Worm

5/8/2002
MSN Messenger OCX Buffer Overflow

5/2/2002
Macromedia Flash Activex Buffer overflow

3/8/2002
Windows Shell Overflow

2/8/2002
ALERT: ISS BlackICE Kernel Overflow Exploitable

12/20/2001
UPNP - Multiple Remote Windows XP/ME/98 Vulnerabilities

9/5/2001
%u encoding IDS bypass vulnerability

8/4/2001
ANALYSIS: CodeRed II Worm

7/17/2001
ANALYSIS: .ida "Code Red" Worm

6/18/2001
Microsoft Internet Information Services Remote Buffer Overflow (SYSTEM Level Access)

5/11/2001
iPlanet – Netscape Enterprise Web Publisher Buffer Overflow

5/1/2001
Windows 2000 IIS 5.0 Remote Buffer Overflow Vulnerability (Remote SYSTEM Level Access)

4/24/2001
IPSwitch IMail 6.06 SMTP Remote System Access Vulnerability

4/12/2001
Trend Micro Interscan VirusWall 3.01 vulnerability

4/11/2001
Solaris ipcs Vulnerability

4/10/2001
Solaris Xsun Buffer Overflow Vulnerability

4/9/2001
Solaris kcms_configure vulnerability

12/22/2000
Frontpage Publishing Denial of Service

11/3/2000
IIS ASP $19.95 hack - IISHack 1.5

8/17/2000
Imail Web Service Remote DoS Attack v.2

11/4/1999
Printer (spooler) Service Vulnerabilities

6/15/1999
Retina vs. IIS4, Round 2 - The Ogle

6/8/1999
Retina vs. IIS4, Round 2 - The Brain File

6/8/1999
Retina vs. IIS4, Round 2

5/26/1999
Multiple Web Interface Security Holes

3/1/1999
Multiple IMail Vulnerabilites

2/22/1999
Multiple WinGate Vulnerabilites

2/21/1999
Multiple Vulnerabilites in Mercur Mail Server

2/20/1999
MDaemon Remote DoS Attack

2/4/1999
Multiple SLMail Vulnerabilities

2/2/1999
WS_FTP Server Remote DoS Attack

1/24/1999
IIS Remote FTP Exploit/DoS Attack

Next Steps

Free Trial
Test drive an eEye product
On-demand Demo
See an online product tour
One-on-one Demo
Schedule a personalized tour
Compare Products
See side-by-side features
Buy Now
Go to eEye product store
Contact | Site Map | Privacy | Website Feedback | 1.866.339.3732
© 1998 – 2012 eEye Digital Security. All rights reserved.