Published Advisories

PUBLISHED ADVISORIES

The following is a list of all publicly disclosed vulnerabilities discovered by Zero Day Initiative researchers. While the affected vendor is working on a patch for these vulnerabilities, Trend Micro customers are protected from exploitation by security filters delivered ahead of public disclosure.

All security vulnerabilities that are acquired by the Zero Day Initiative are handled according to the ZDI Disclosure Policy. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory which describes the issue, including links to the vendor's fixes.

Available in RSS Format
ZDI ID ZDI CAN AFFECTED VENDOR(S) CVE CVSS v3.0 PUBLISHED UPDATED TITLE
ZDI-14-430 ZDI-CAN-2811 Microsoft CVE-2014-6374 6.8 2015-12-18 Microsoft Internet Explorer RtfToForeign32 Out-Of-Bounds Indexing Remote Code Execution Vulnerability
ZDI-14-429 ZDI-CAN-2279 Agilent Technologies CVE-2014-5145 10.0 2015-10-05 (0Day) Agilent Technologies 2100 Expert CSDispatcher.exe Remote Code Execution Vulnerability
ZDI-14-428 ZDI-CAN-2517 SolarWinds   6.8 2015-10-05 (0Day) SolarWinds Server and Application Monitor Alert Manager Elevation of Privilege Vulnerability
ZDI-14-427 ZDI-CAN-2531 Mozilla CVE-2014-1581 6.8 2015-02-23 Mozilla Firefox DirectionalityUtils Use-After-Free Remote Code Execution Vulnerability
ZDI-14-426 ZDI-CAN-2049 AlienVault   7.9 2015-02-23 AlienVault Unified Security Management cloneid SQL Injection and Scanner Binary Command Injection Remote Code Execution Vulnerability
ZDI-14-425 ZDI-CAN-2599 Trihedral Engineering Ltd CVE-2014-9192 7.8 2014-12-12 Trihedral VTScada Integer Overflow Denial of Service Vulnerability
ZDI-14-424 ZDI-CAN-2527 Honeywell CVE-2014-8269 7.5 2014-12-11 Honeywell OPOS Suite HWOPOSScale.ocx Open Method Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-423 ZDI-CAN-2528 Honeywell CVE-2014-8269 7.5 2014-12-11 Honeywell OPOS Suite HWOPOSSCANNER.ocx Open Method Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-422 ZDI-CAN-2462 ManageEngine CVE-2014-9373 10.0 2014-12-11 ManageEngine NetFlow Analyzer CollectorConfInfoServlet COLLECTOR_ID Directory Traversal Remote Code Execution Vulnerability
ZDI-14-421 ZDI-CAN-2473 ManageEngine CVE-2014-9372 6.4 2014-12-11 ManageEngine Password Manager Pro UploadAccountActivities filename Directory Traversal Denial of Service Vulnerability
ZDI-14-420 ZDI-CAN-2445 ManageEngine CVE-2014-9371 10.0 2014-12-11 ManageEngine Desktop Central MSP NativeAppServlet UDID JSON Object Code Injection Remote Code Execution Vulnerability
ZDI-14-419 ZDI-CAN-2581 BMC Software CVE-2014-8270 5.0 2014-12-09 BMC Track-It! Web Account Credential Information Disclosure Vulnerability
ZDI-14-418 ZDI-CAN-2352 BitTorrent CVE-2014-8515 6.8 2014-12-09 BitTorrent Web Interface Remote Code Execution Vulnerability
ZDI-14-417 ZDI-CAN-2552 Adobe CVE-2014-9163 6.8 2014-12-09 Adobe Flash Player parseFloat Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-416 ZDI-CAN-2588 Adobe CVE-2014-9162 6.8 2014-12-09 Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability
ZDI-14-415 ZDI-CAN-2349 SAP CVE-2014-9264 9.5 2014-12-09 SAP SQL Anywhere .NET Data Provider Malformed Integer Stack Buffer Overflow Code Execution Vulnerability
ZDI-14-414 ZDI-CAN-2351 SAP CVE-2014-9264 8.5 2014-12-09 SAP SQL Anywhere .NET Data Provider REPLICATE Function Heap Overflow Code Execution Vulnerability
ZDI-14-413 ZDI-CAN-2350 SAP CVE-2014-9264 8.5 2014-12-09 SAP SQL Anywhere .NET Data Provider SPACE Function Heap Overflow Code Execution Vulnerability
ZDI-14-412 ZDI-CAN-2348 SAP CVE-2014-9264 9.5 2014-12-09 SAP SQL Anywhere .NET Data Provider Column Alias Stack Buffer Overflow Code Execution Vulnerability
ZDI-14-411 ZDI-CAN-2438 Lexmark CVE-2014-8742 7.8 2014-12-09 Lexmark MarkVision Enterprise ReportDownloadServlet Information Disclosure Vulnerability
ZDI-14-410 ZDI-CAN-2437 Lexmark CVE-2014-8741 10.0 2014-12-09 Lexmark MarkVision Enterprise GfdFileUploadServlet Remote Code Execution Vulnerability
ZDI-14-409 ZDI-CAN-2536 Microsoft CVE-2014-8966 6.8 2014-12-09 Microsoft Internet Explorer CInputElement Type Confusion Remote Code Execution Vulnerability
ZDI-14-408 ZDI-CAN-2522 Microsoft CVE-2014-6329 6.8 2014-12-09 Microsoft Internet Explorer CTreePos Use-After-Free Remote Code Execution Vulnerability
ZDI-14-407 ZDI-CAN-2521 Microsoft CVE-2014-6327 6.8 2014-12-09 Microsoft Internet Explorer CSetTimeoutInfo Use-After-Free Remote Code Execution Vulnerability
ZDI-14-406 ZDI-CAN-2520 Microsoft CVE-2014-6376 5.1 2014-12-09 Microsoft Internet Explorer LineBoxBuilder::FindWord Out-Of-Bounds Memory Access Vulnerability
ZDI-14-405 ZDI-CAN-2503 Microsoft CVE-2014-6375 6.8 2014-12-09 Microsoft Internet Explorer Insert Command Use-After-Free Remote Code Execution Vulnerability
ZDI-14-404 ZDI-CAN-2498 Microsoft CVE-2014-6374 6.8 2014-12-09 Microsoft Internet Explorer RtfToForeign32 Out-Of-Bounds Indexing Remote Code Execution Vulnerability
ZDI-14-403 ZDI-CAN-2365 Microsoft CVE-2014-8967 6.8 2014-12-04 (0Day) Microsoft Internet Explorer display:run-in Use-After-Free Remote Code Execution Vulnerability
ZDI-14-402 ZDI-CAN-2197 Autodesk CVE-2014-9268 7.5 2014-12-04 Autodesk Design Review AdView.AdViewer.1 Remote Code Execution Vulnerability
ZDI-14-401 ZDI-CAN-2355 Samsung CVE-2014-9265 7.5 2014-12-04 Samsung SmartViewer CNC_Ctrl ActiveX Control BackupToAvi Remote Code Execution Vulnerability
ZDI-14-400 ZDI-CAN-2413 Samsung CVE-2014-9266 6.8 2014-12-04 Samsung SmartViewer STWConfig ActiveX Control Remote Code Execution Vulnerability
ZDI-14-399 ZDI-CAN-2190 PTC CVE-2014-9267 7.5 2014-12-04 PTC IsoView ActiveX Control ViewPort Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-398 ZDI-CAN-2189 PTC CVE-2014-9267 7.5 2014-12-04 PTC IsoView Activex Control Multiple Animation Methods Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-397 ZDI-CAN-2409 3S Pocketnet Tech CVE-2014-9263 7.5 2014-12-04 (0Day) 3S Pocketnet Tech VMS PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 GetONVIFDeviceInformation/GetONVIFProfiles/GetONVIFStreamUri Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-396 ZDI-CAN-2408 3S Pocketnet Tech CVE-2014-9263 7.5 2014-12-04 (0Day) 3S Pocketnet Tech VMS PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 SetDisplayText Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-395 ZDI-CAN-2407 3S Pocketnet Tech CVE-2014-9263 7.5 2014-12-04 (0Day) 3S Pocketnet Tech VMS PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 SaveCurrentImageEx Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-394 ZDI-CAN-2406 3S Pocketnet Tech CVE-2014-9263 7.5 2014-12-04 (0Day) 3S Pocketnet Tech VMS PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 SaveCurrentImage Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-393 ZDI-CAN-2405 3S Pocketnet Tech CVE-2014-9263 7.5 2014-12-04 (0Day) 3S Pocketnet Tech VMS PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 StartRecord/StartRecordEx/StartScheuledRecord Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-392 ZDI-CAN-2415 Cisco CVE-2014-8002 9.5 2014-12-03 Cisco OpenH264 Use-After-Free Remote Code Execution Vulnerability
ZDI-14-391 ZDI-CAN-2414 Cisco CVE-2014-8001 9.5 2014-12-03 Cisco OpenH264 Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-390 ZDI-CAN-2222 Apple CVE-2014-1314 4.6 2014-12-02 (Pwn2Own) Apple OS X WindowsServer Sandbox Escape Vulnerability
ZDI-14-389 ZDI-CAN-2137 ARRIS CVE-2014-8423 10.0 2014-11-25 ARRIS VAP2500 Management Portal Remote Command Execution Vulnerability
ZDI-14-388 ZDI-CAN-2136 ARRIS CVE-2014-8424 7.8 2014-11-25 ARRIS VAP2500 Management Portal Authentication Bypass Vulnerability
ZDI-14-387 ZDI-CAN-2135 ARRIS CVE-2014-8425 7.8 2014-11-25 ARRIS VAP2500 Management Portal Information Disclosure Vulnerability
ZDI-14-386 ZDI-CAN-2428 ManageEngine CVE-2014-8678 7.8 2014-11-21 ManageEngine OpUtils ConfigSaveServlet saveFile Information Disclosure Vulnerability
ZDI-14-385 ZDI-CAN-2286 SonicWALL CVE-2014-8420 9.0 2014-11-21 Dell Sonicwall GMS Virtual Appliance Multiple Remote Code Execution Vulnerabilities
ZDI-14-384 ZDI-CAN-2418 Rockwell Automation CVE-2014-5424 7.5 2014-11-19 Rockwell Automation Connected Components Workbench RA.ViewElements.Row.1 Arbitrary Write Remote Code Execution Vulnerability
ZDI-14-383 ZDI-CAN-2417 Rockwell Automation CVE-2014-5424 7.5 2014-11-19 Rockwell Automation Connected Components Workbench RA.ViewElements.Grid.1 Arbitrary Write Remote Code Execution Vulnerability
ZDI-14-382 ZDI-CAN-2535 Oracle CVE-2014-6466 4.6 2014-11-19 Oracle Java jp2launcher.exe Privilege Escalation Vulnerability
ZDI-14-381 ZDI-CAN-2544 Microsoft CVE-2014-6351 6.8 2014-11-19 Microsoft Internet Explorer CSS Quotes Use-After-Free Remote Code Execution Vulnerability
ZDI-14-380 ZDI-CAN-2482 Microsoft CVE-2014-6348 6.8 2014-11-19 Microsoft Internet Explorer CHeaderElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-379 ZDI-CAN-2436 Microsoft CVE-2014-6344 6.8 2014-11-19 Microsoft Internet Explorer GetReplacedUrlImgCtxCookie Out-of-bounds Indexing Remote Code Execution Vulnerability
ZDI-14-378 ZDI-CAN-2410 Microsoft CVE-2014-6343 6.8 2014-11-19 Microsoft Internet Explorer CElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-377 ZDI-CAN-2474 Microsoft CVE-2014-6342 6.8 2014-11-19 Microsoft Internet Explorer CPtsTextParaclient::GetApeCorners Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-14-376 ZDI-CAN-2433 Microsoft CVE-2014-6341 6.8 2014-11-19 Microsoft Internet Explorer CStyleSheet::get_parentStyleSheet Use-After-Free Remote Code Execution Vulnerability
ZDI-14-375 ZDI-CAN-2404 Microsoft CVE-2014-4143 6.8 2014-11-19 Microsoft Internet Explorer CSecurityContext Use-After-Free Remote Code Execution Vulnerability
ZDI-14-374 ZDI-CAN-2399 Microsoft CVE-2014-6347 6.8 2014-11-19 Microsoft Internet Explorer DOMStringMap Type Confusion Remote Code Execution Vulnerability
ZDI-14-373 ZDI-CAN-2369 Trend Micro CVE-2014-8510 6.5 2014-11-06 Trend Micro InterScan Web Security Virtual Appliance Information Disclosure Vulnerability
ZDI-14-372 ZDI-CAN-2183 Visual Mining CVE-2014-8516 10.0 2014-11-03 (0Day) Visual Mining NetCharts Server File Upload Remote Code Execution Vulnerability
ZDI-14-371 ZDI-CAN-2333 Denon CVE-2014-8508 6.4 2014-11-03 (0Day) Denon AVR-3313CI 'Friendlyname' Persistent Cross-Site Scripting Vulnerability
ZDI-14-370 ZDI-CAN-2494 BitTorrent CVE-2014-8509 6.8 2014-10-29 BitTorrent Bootstrap Improper Indexing Remote Code Execution Vulnerability
ZDI-14-369 ZDI-CAN-2310 Ecava CVE-2014-0786 7.5 2014-10-24 Ecava IntegraXor Guest Acccount Information Disclosure Vulnerability
ZDI-14-368 ZDI-CAN-1923 Apple CVE-2014-4391 5.6 2014-10-24 Apple OS X GateKeeper Bypass Vulnerability
ZDI-14-367 ZDI-CAN-2306 Microsoft CVE-2014-1803 6.8 2014-10-14 Microsoft Internet Explorer CAnchorElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-366 ZDI-CAN-2324 Microsoft CVE-2014-1799 6.8 2014-10-14 Microsoft Internet Explorer CDOMEvent Use-After-Free Remote Code Execution Vulnerability
ZDI-14-365 ZDI-CAN-2518 Adobe CVE-2014-0569 6.8 2014-10-14 Adobe Flash Player casi32 Integer Overflow Remote Code Execution Vulnerability
ZDI-14-364 ZDI-CAN-2357 Panasonic CVE-2014-8755 7.5 2014-10-14 Panasonic Network Camera View GetImageDataPrint Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-14-363 ZDI-CAN-2171 Panasonic CVE-2014-8756 7.5 2014-10-14 Panasonic Network Camera Recorder NcrCtl4.NcrNet.1 GetVOLHeader Arbitrary Write Remote Code Execution Vulnerability
ZDI-14-362 ZDI-CAN-2490 Foxit CVE-2014-8074 6.8 2014-10-14 Foxit ActiveX Pro SDK SetLogFile Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-361 ZDI-CAN-2336 Hewlett-Packard CVE-2014-2636 6.8 2014-10-14 Hewlett-Packard Sprinter TTF16.ocx AttachToSS Memory Corruption Remote Code Execution Vulnerability
ZDI-14-360 ZDI-CAN-2342 Hewlett-Packard CVE-2014-2637 6.8 2014-10-14 Hewlett-Packard Sprinter TTF16.ocx CopyRange/CopyRangeEx Memory Corruption Remote Code Execution Vulnerability
ZDI-14-359 ZDI-CAN-2344 Hewlett-Packard CVE-2014-2638 6.8 2014-10-14 Hewlett-Packard Sprinter TTF16.ocx DefaultFontName Memory Corruption Remote Code Execution Vulnerability
ZDI-14-358 ZDI-CAN-2343 Hewlett-Packard CVE-2014-2635 6.8 2014-10-14 Hewlett-Packard Sprinter TTF16.ocx SwapTables Method Memory Corruption Remote Code Execution Vulnerability
ZDI-14-357 ZDI-CAN-2280 Microsoft CVE-2014-1769 6.8 2014-10-14 Microsoft Internet Explorer CTreePos Use-After-Free Remote Code Execution Vulnerability
ZDI-14-356 ZDI-CAN-2388 Microsoft CVE-2014-4145 6.8 2014-10-14 Microsoft Internet Explorer CElement::DelMarkupPtr Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-14-355 ZDI-CAN-2398 Microsoft CVE-2014-4092 6.8 2014-10-14 Microsoft Internet Explorer CTableCell Use-After-Free Remote Code Execution Vulnerability
ZDI-14-354 ZDI-CAN-2359 Microsoft CVE-2014-1799 6.8 2014-10-14 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-353 ZDI-CAN-2377 Microsoft CVE-2014-4130 6.8 2014-10-14 Microsoft Internet Explorer Title attribute Use-After-Free Remote Code Execution Vulnerability
ZDI-14-352 ZDI-CAN-2382 Microsoft CVE-2014-4138 5.1 2014-10-14 Microsoft Internet Explorer ConvertBitmaptoPng Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-351 ZDI-CAN-2397 Microsoft CVE-2014-4141 6.8 2014-10-14 Microsoft Internet Explorer CAttrValue Use-After-Free Remote Code Execution Vulnerability
ZDI-14-350 ZDI-CAN-2484 Microsoft CVE-2014-4117 6.8 2014-10-14 Microsoft Word Style Tag Use-After-Free Remote Code Execution Vulnerability
ZDI-14-349 ZDI-CAN-2387 Microsoft   6.8 2014-10-02 (0Day) Microsoft Internet Explorer ScriptEngine Use-After-Free Remote Code Execution Vulnerability
ZDI-14-348 ZDI-CAN-2168 GoPro CVE-2014-6434 10.0 2014-10-02 (0Day) GoPro HERO 3+ gpExec restart Remote Code Execution Vulnerability
ZDI-14-347 ZDI-CAN-2162 GoPro CVE-2014-6433 10.0 2014-10-02 (0Day) GoPro HERO 3+ gpExec start Remote Code Execution Vulnerability
ZDI-14-346 ZDI-CAN-2147 Apple   4.7 2014-10-02 (0Day) Apple OS X IOHIDSecurePromptClient Denial Of Service Vulnerability
ZDI-14-345 ZDI-CAN-2200 Hewlett-Packard   5.1 2014-10-02 (0Day) Hewlett-Packard Data Protector omnidlc Buffer Overflow Remote Code Execution Vulnerabililty
ZDI-14-344 ZDI-CAN-2266 Hewlett-Packard   10.0 2014-10-02 (0Day) Hewlett-Packard Data Protector EXEC_INTEGUTIL Remote Command Execution Vulnerability
ZDI-14-343 ZDI-CAN-2373 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Command 685 Remote Code Execution Vulnerability
ZDI-14-342 ZDI-CAN-2179 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Option -D Remote Code Execution Vulnerability
ZDI-14-341 ZDI-CAN-2178 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Option -T Remote Code Execution Vulnerability
ZDI-14-340 ZDI-CAN-2177 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Option -L Remote Code Execution Vulnerability
ZDI-14-339 ZDI-CAN-2176 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Option -D Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-338 ZDI-CAN-2175 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Option -T Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-337 ZDI-CAN-2174 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Option -L Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-336 ZDI-CAN-2173 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-335 ZDI-CAN-2078 Hewlett-Packard CVE-2014-2624 10.0 2014-10-01 Hewlett-Packard Network Node Manager ovopi.dll Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-334 ZDI-CAN-2332 Sophos CVE-2014-5501 9.3 2014-10-01 Sophos Cyberoam diagnose Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-333 ZDI-CAN-2327 Sophos CVE-2014-5502 9.0 2014-10-01 Sophos Cyberoam sslvpn_liveuser_delete Command Injection Remote Code Execution Vulnerability
ZDI-14-332 ZDI-CAN-2328 Sophos CVE-2014-5502 9.0 2014-10-01 Sophos Cyberoam webclient_portal_settings Command Injection Remote Code Execution Vulnerability
ZDI-14-331 ZDI-CAN-2329 Sophos CVE-2014-5502 9.0 2014-10-01 Sophos Cyberoam checkcert_key Command Injection Remote Code Execution Vulnerability
ZDI-14-330 ZDI-CAN-2185 Microsoft CVE-2014-4112 6.8 2014-10-01 Microsoft Internet Explorer Layout Use-After-Free Remote Code Execution Vulnerability
ZDI-14-329 ZDI-CAN-2331 Sophos CVE-2014-5503 8.5 2014-10-01 Sophos Cyberoam add_guest_user Blind SQL Injection Remote Code Execution Vulnerability
ZDI-14-328 ZDI-CAN-2330 Sophos CVE-2014-5502 9.0 2014-10-01 Sophos Cyberoam ccc_flush_sql_file Command Injection Remote Code Execution Vulnerability
ZDI-14-327 ZDI-CAN-2346 Microsoft CVE-2014-4067 6.8 2014-09-25 Microsoft Internet Explorer CSS Transition Remote Code Execution Vulnerability
ZDI-14-326 ZDI-CAN-2238 Apple CVE-2014-4350 7.5 2014-09-22 Apple QuickTime MIDI Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-325 ZDI-CAN-1996 Apple CVE-2014-1391 6.8 2014-09-22 Apple QuickTime mdat Atom Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-324 ZDI-CAN-2300 Adobe CVE-2014-0561 7.5 2014-09-16 Adobe Reader 3DIF Plugin Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-323 ZDI-CAN-2432 Adobe CVE-2014-0567 6.8 2014-09-16 Adobe Reader replace() Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-322 ZDI-CAN-2487 Microsoft CVE-2014-4101 5.1 2014-09-16 Microsoft Internet Explorer UpdateColumnAndColGroupStyles Remote Code Execution Vulnerability
ZDI-14-321 ZDI-CAN-2403 Microsoft CVE-2014-4092 6.8 2014-09-16 Microsoft Internet Explorer CTableOMRowCache Use-After-Free Remote Code Execution Vulnerability
ZDI-14-320 ZDI-CAN-2430 Microsoft CVE-2014-4092 6.8 2014-09-16 Microsoft Internet Explorer CTableOMRowCache Use-After-Free Remote Code Execution Vulnerability
ZDI-14-319 ZDI-CAN-2486 Microsoft CVE-2014-4096 6.8 2014-09-16 Microsoft Internet Explorer CBackgroundCollection Use-After-Free Remote Code Execution Vulnerability
ZDI-14-318 ZDI-CAN-2393 Microsoft CVE-2014-4079 6.8 2014-09-16 Microsoft Internet Explorer CGeneratedTreeNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-317 ZDI-CAN-2412 Microsoft CVE-2014-4090 6.8 2014-09-16 Microsoft Internet Explorer CTableCell Use-After-Free Remote Code Execution Vulnerability
ZDI-14-316 ZDI-CAN-2391 Microsoft CVE-2014-4085 6.8 2014-09-16 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-315 ZDI-CAN-2401 Microsoft CVE-2014-4108 6.8 2014-09-16 Microsoft Internet Explorer CTable Use-After-Free Remote Code Execution Vulnerability
ZDI-14-314 ZDI-CAN-2400 Microsoft CVE-2014-4107 6.8 2014-09-16 Microsoft Internet Explorer CAttrValue Use-After-Free Remote Code Execution Vulnerability
ZDI-14-313 ZDI-CAN-2392 Microsoft CVE-2014-4105 6.8 2014-09-16 Microsoft Internet Explorer CSelectTracker::GetMoveDirection Use-After-Free Remote Code Execution Vulnerability
ZDI-14-312 ZDI-CAN-2390 Microsoft CVE-2014-4103 6.8 2014-09-16 Microsoft Internet Explorer CDataBindTask Use-After-Free Remote Code Execution Vulnerability
ZDI-14-311 ZDI-CAN-2356 Microsoft CVE-2014-4099 6.8 2014-09-16 Microsoft Internet Explorer CCanvasRadialGradient Out-Of-Bounds Indexing Remote Code Execution Vulnerability
ZDI-14-310 ZDI-CAN-2364 Microsoft CVE-2014-4098 6.8 2014-09-16 Microsoft Internet Explorer CGeneratedTreeNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-309 ZDI-CAN-2353 Microsoft CVE-2014-4096 6.8 2014-09-16 Microsoft Internet Explorer Empty CAttrValue Uninitialized Variable Remote Code Execution Vulnerability
ZDI-14-308 ZDI-CAN-2347 Microsoft CVE-2014-4097 6.8 2014-09-16 Microsoft Internet Explorer CFieldSetLayout Use-After-Free Remote Code Execution Vulnerability
ZDI-14-307 ZDI-CAN-2345 Microsoft CVE-2014-4095 6.8 2014-09-16 Microsoft Internet Explorer CHTMLEditorProxy Use-After-Free Remote Code Execution Vulnerability
ZDI-14-306 ZDI-CAN-2276 Microsoft CVE-2014-4065 6.8 2014-09-16 Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability
ZDI-14-305 ZDI-CAN-2264 Hewlett-Packard CVE-2014-2624 10.0 2014-09-16 Hewlett-Packard Network Node Manager ovopi.dll Stack Based Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-304 ZDI-CAN-2394 Mozilla CVE-2014-1567 6.8 2014-09-03 Mozilla Firefox DirectionalityUtils Use-After-Free Remote Code Execution Vulnerability
ZDI-14-303 ZDI-CAN-2154 SolarWinds CVE-2014-5504 7.5 2014-09-03 SolarWinds Log and Event Manager Static Credential Remote Code Execution Vulnerability
ZDI-14-302 ZDI-CAN-2143 SAP CVE-2014-5506 6.8 2014-09-03 SAP Crystal Reports Connection String Processing Double Free Remote Code Execution Vulnerability
ZDI-14-301 ZDI-CAN-2146 SAP CVE-2014-5505 6.8 2014-09-03 SAP Crystal Reports Datasource Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-300 ZDI-CAN-2139 Attachmate   10.0 2014-09-03 Attachmate AppManager Client Resource Monitor Remote Code Execution Vulnerability
ZDI-14-299 ZDI-CAN-2087 SolarWinds   10.0 2014-08-27 SolarWinds Storage Manager AuthenticationFilter Remote Code Execution Vulnerability
ZDI-14-298 ZDI-CAN-2191 CSWorks CVE-2014-2351 7.5 2014-08-27 CSWorks Software Framework SQL Injection Remote Code Execution Vulnerability
ZDI-14-297 ZDI-CAN-2151 Juniper CVE-2014-3411 10.0 2014-08-27 Juniper Network and Security Manager XDB Remote Code Execution Vulnerability
ZDI-14-296 ZDI-CAN-2287 Novell CVE-2014-0600 7.8 2014-08-26 Novell Groupwise Administration Server FileUploadServlet poLibMaintenanceFileSave Information Disclosure Vulnerability
ZDI-14-295 ZDI-CAN-2292 AlienVault CVE-2014-5210 10.0 2014-08-14 AlienVault OSSIM av-centerd Util.pm remote_task Remote Code Execution Vulnerability
ZDI-14-294 ZDI-CAN-2290 AlienVault CVE-2014-5210 10.0 2014-08-14 AlienVault OSSIM av-centerd Util.pm get_license Remote Code Execution Vulnerability
ZDI-14-293 ZDI-CAN-2308 F5 CVE-2014-2949 6.8 2014-08-12 (0Day) F5 Data Manager discoverFilerBasicInfo.jsft filerName SQL Injection Remote Code Execution Vulnerability
ZDI-14-292 ZDI-CAN-2236 Microsoft CVE-2014-2819 7.2 2014-08-07 (0Day) (Pwn2Own) Microsoft Internet Explorer PresentationHost.exe Protected Mode Bypass Vulnerability
ZDI-14-291 ZDI-CAN-2354 Attachmate CVE-2014-0603 7.5 2014-08-12 Attachmate Reflection Pro FTP rftpcom15.dll GetSiteProperties3 Remote Code Execution Vulnerability
ZDI-14-290 ZDI-CAN-2106 Attachmate CVE-2014-0605 7.5 2014-08-12 Attachmate Reflection Secure FTP Client rftpcom.dll SaveSettings Remote Code Execution Vulnerability
ZDI-14-289 ZDI-CAN-2081 Attachmate CVE-2014-0604 7.5 2014-08-12 Attachmate Reflection Secure FTP Client rftpcom.dll StartLog Remote Code Execution Vulnerability
ZDI-14-288 ZDI-CAN-2075 Attachmate CVE-2014-0603 7.5 2014-08-12 Attachmate Reflection Secure FTP Client rftpcom.dll Multiple Memory Corruption Remote Code Execution Vulnerabilities
ZDI-14-287 ZDI-CAN-2277 Microsoft CVE-2014-4060 6.8 2014-08-12 Microsoft Windows Media Center CSyncBasePlayer Use-After-Free Remote Code Execution Vulnerability
ZDI-14-286 ZDI-CAN-2316 Microsoft CVE-2014-4051 7.5 2014-08-12 Microsoft Internet Explorer CPhraseElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-285 ZDI-CAN-2309 Microsoft CVE-2014-4050 6.8 2014-08-12 Microsoft Internet Explorer first-letter Use-After-Free Remote Code Execution Vulnerability
ZDI-14-284 ZDI-CAN-2278 Microsoft CVE-2014-2827 6.8 2014-08-12 Microsoft Internet Explorer Arrow Key Use-After-Free Remote Code Execution Vulnerability
ZDI-14-283 ZDI-CAN-2272 Microsoft CVE-2014-4056 7.5 2014-08-12 Microsoft Internet Explorer CTreePos Use-After-Free Remote Code Execution Vulnerability
ZDI-14-282 ZDI-CAN-2323 Microsoft CVE-2014-4058 6.8 2014-08-12 Microsoft Internet Explorer CScriptElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-281 ZDI-CAN-2315 Microsoft CVE-2014-4055 6.8 2014-08-12 Microsoft Internet Explorer CInput onfocus Use-After-Free Remote Code Execution Vulnerability
ZDI-14-280 ZDI-CAN-2314 Microsoft CVE-2014-4052 6.8 2014-08-12 Microsoft Internet Explorer CTableRow Use-After-Free Remote Code Execution Vulnerability
ZDI-14-279 ZDI-CAN-2138 Hewlett-Packard CVE-2014-2631 6.8 2014-08-12 Hewlett-Packard Application Lifecycle Manager DLL Planting Elevation of Privilege Vulnerability
ZDI-14-278 ZDI-CAN-2243 Microsoft CVE-2014-2820 6.8 2014-08-12 Microsoft Internet Explorer CDOMUIEvent Use-After-Free Remote Code Execution Vulnerability
ZDI-14-277 ZDI-CAN-2326 Adobe CVE-2014-0540 6.8 2014-08-12 Adobe Flash Player Vector Object Information Disclosure Vulnerability
ZDI-14-276 ZDI-CAN-2204 Microsoft CVE-2014-2818 6.8 2014-08-12 Microsoft Internet Explorer CScriptData Use-After-Free Remote Code Execution Vulnerability
ZDI-14-275 ZDI-CAN-2156 Microsoft CVE-2014-2774 6.8 2014-08-12 Microsoft Internet Explorer CElement::GetClassCacheArray Improper Indexing Remote Code Execution Vulnerability
ZDI-14-274 ZDI-CAN-2184 Microsoft CVE-2014-4063 6.8 2014-08-12 Microsoft Internet Explorer CSegment Object Use-After-Free Remote Code Execution Vulnerability
ZDI-14-273 ZDI-CAN-2193 AlienVault CVE-2014-5158 10.0 2014-08-01 AlienVault OSSIM av-centerd Remote Code Execution Vulnerability
ZDI-14-272 ZDI-CAN-2182 AlienVault CVE-2014-5158 10.0 2014-08-01 AlienVault OSSIM backup Command Remote Code Execution Vulnerability
ZDI-14-271 ZDI-CAN-2181 AlienVault CVE-2014-5159 7.5 2014-08-01 AlienVault OSSIM ws_data SQL Injection Remote Code Execution Vulnerability
ZDI-14-270 ZDI-CAN-2209 Microsoft CVE-2014-1762 7.5 2014-07-30 (0Day) (Pwn2Own\Pwn4Fun) Microsoft Internet Explorer localhost Protected Mode Bypass Vulnerability
ZDI-14-269 ZDI-CAN-2161 Attachmate CVE-2014-0607 10.0 2014-07-30 Attachmate Verastream Process Designer Process Server Remote Code Execution Vulnerability
ZDI-14-268 ZDI-CAN-2024 Hewlett-Packard CVE-2014-2626 9.4 2014-07-24 Shunra Network Virtualization for Hewlett-Packard toServerObject() Remote Code Execution Vulnerability
ZDI-14-267 ZDI-CAN-2023 Hewlett-Packard CVE-2014-2625 8.5 2014-07-24 Shunra Network Virtualization for Hewlett-Packard storedNtxFile() Information Disclosure Vulnerability
ZDI-14-266 ZDI-CAN-2363 Microsoft CVE-2014-2803 6.8 2014-07-24 Microsoft Internet Explorer CTreePos Use-After-Free Remote Code Execution Vulnerability
ZDI-14-265 ZDI-CAN-2376 Microsoft CVE-2014-2802 6.8 2014-07-24 Microsoft Internet Explorer CTitleElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-264 ZDI-CAN-2082 Apple CVE-2014-4979 6.8 2014-07-23 (0Day) Apple QuickTime 'mvhd' Atom Heap Memory Corruption Remote Code Execution Vulnerability
ZDI-14-263 ZDI-CAN-2170 Hewlett-Packard CVE-2014-5160 7.5 2014-07-23 (0Day) Hewlett-Packard Data Protector Cell Request Service Opcode 1091 Directory Traversal Arbitrary File Write Vulnerability
ZDI-14-262 ZDI-CAN-2153 Hewlett-Packard CVE-2014-5160 7.5 2014-07-23 (0Day) Hewlett-Packard Data Protector Cell Request Service Opcode 305 Directory Traversal Arbitrary File Creation Vulnerability
ZDI-14-261 ZDI-CAN-2366 Microsoft CVE-2014-1765 6.8 2014-07-23 Microsoft Internet Explorer CAttrValue Use-After-Free Remote Code Execution Vulnerability
ZDI-14-260 ZDI-CAN-2371 Microsoft CVE-2014-1799 6.8 2014-07-23 Microsoft Internet Explorer CMarkupPointer Use-After-Free Remote Code Execution Vulnerability
ZDI-14-259 ZDI-CAN-2187 Microsoft CVE-2014-2764 6.8 2014-07-23 Microsoft Internet Explorer CTreeNode Double Free Remote Code Execution Vulnerability
ZDI-14-258 ZDI-CAN-2246 Oracle CVE-2014-2490 9.3 2014-07-18 Oracle Java ResourceBundle Format String Remote Code Execution Vulnerability
ZDI-14-257 ZDI-CAN-2107 Oracle CVE-2014-4249 7.5 2014-07-18 Oracle Business Intelligence Mobile App Designer UIXCacheResourceServlet Information Disclosure Vulnerability
ZDI-14-256 ZDI-CAN-2067 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx ServerResponse Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-255 ZDI-CAN-2066 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx GetColor Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-254 ZDI-CAN-2064 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx AlarmImage Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-253 ZDI-CAN-2063 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx SetColor Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-252 ZDI-CAN-2062 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx CCDParameter Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-251 ZDI-CAN-2086 Advantech CVE-2014-2365 6.5 2014-07-18 Advantech WebAccess Remote Code Execution Vulnerability
ZDI-14-250 ZDI-CAN-2085 Advantech CVE-2014-2366 9.0 2014-07-18 Advantech WebAccess Password Disclosure Vulnerability
ZDI-14-249 ZDI-CAN-2079 Advantech CVE-2014-2367 7.5 2014-07-18 Advantech WebAccess Remote Authentication Bypass Vulnerability
ZDI-14-248 ZDI-CAN-2069 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx IPAddress Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-247 ZDI-CAN-2068 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx SetBaud Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-246 ZDI-CAN-2065 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx GetParameter Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-245 ZDI-CAN-2061 Advantech CVE-2014-2368 7.5 2014-07-18 Advantech WebAccess bwocxrun ActiveX Control Installation Vulnerability
ZDI-14-244 ZDI-CAN-2045 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess webdact.ocx NodeName Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-243 ZDI-CAN-2044 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess webdact.ocx ProjectName Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-242 ZDI-CAN-2043 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess dvs.ocx SetParameter Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-241 ZDI-CAN-2032 Advantech CVE-2014-2364 7.5 2014-07-18 Advantech WebAccess webvact.ocx ProjectName Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-240 ZDI-CAN-2285 Apple CVE-2014-1371 4.6 2014-07-18 Apple OS X Dock Service Sandbox Escape Vulnerability
ZDI-14-239 ZDI-CAN-2241 Apache CVE-2014-0117 7.8 2014-07-18 Apache HTTP Server mod_proxy Denial Of Service Vulnerability
ZDI-14-238 ZDI-CAN-2201 Microsoft CVE-2014-0308 6.8 2014-07-18 Microsoft Internet Explorer CUListElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-237 ZDI-CAN-2368 Microsoft CVE-2014-1799 6.8 2014-07-18 Microsoft Internet Explorer CView Use-After-Free Remote Code Execution Vulnerability
ZDI-14-236 ZDI-CAN-2340 Apache CVE-2014-0226 7.5 2014-07-16 Apache httpd mod_status Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-235 ZDI-CAN-2312 Hewlett-Packard CVE-2014-2622 8.5 2014-07-16 Hewlett-Packard Intelligent Management Center RssServlet Information Disclosure Vulnerability
ZDI-14-234 ZDI-CAN-2090 Hewlett-Packard CVE-2014-2621 7.8 2014-07-16 Hewlett-Packard Intelligent Management Center IctDownloadServlet Information Disclosure Vulnerability
ZDI-14-233 ZDI-CAN-2089 Hewlett-Packard CVE-2014-2620 7.8 2014-07-16 Hewlett-Packard Intelligent Management Center FaultDownloadServlet Information Disclosure Vulnerability
ZDI-14-232 ZDI-CAN-2088 Hewlett-Packard CVE-2014-2619 7.8 2014-07-16 Hewlett-Packard Intelligent Management Center SyslogDownloadServlet Information Disclosure Vulnerability
ZDI-14-231 ZDI-CAN-2080 Hewlett-Packard CVE-2014-2618 7.8 2014-07-16 Hewlett-Packard Intelligent Management Center BIMS UploadServlet Information Disclosure Vulnerability
ZDI-14-230 ZDI-CAN-2104 Hewlett-Packard CVE-2014-2617 10.0 2014-07-09 Hewlett-Packard Universal CMDB Default Credentials Remote Code Execution Vulnerability
ZDI-14-229 ZDI-CAN-2083 Hewlett-Packard CVE-2014-2615 7.5 2014-07-09 Hewlett-Packard Universal CMDB mam-collectors Information Disclosure Vulnerability
ZDI-14-228 ZDI-CAN-2140 Hewlett-Packard CVE-2014-2614 6.8 2014-07-09 Hewlett-Packard SiteScope EmailServlet servlet Information Disclosure Vulnerability
ZDI-14-227 ZDI-CAN-2367 Microsoft CVE-2014-2761 6.8 2014-07-09 Microsoft Internet Explorer TextBlockRun Use-After-Free Remote Code Execution Vulnerability
ZDI-14-226 ZDI-CAN-2370 Microsoft CVE-2014-1769 6.8 2014-07-09 Microsoft Internet Explorer Uninitialized Variable Remote Code Execution Vulnerability
ZDI-14-225 ZDI-CAN-2303 Microsoft CVE-2014-2813 6.8 2014-07-09 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-224 ZDI-CAN-2302 Embarcadero CVE-2014-4647 7.5 2014-07-09 (0Day) Embarcadero ER/Studio Data Architect TSVisualization ActiveX loadExtensionFactory Remote Code Execution Vulnerability
ZDI-14-223 ZDI-CAN-2269 Microsoft CVE-2014-1765 6.8 2014-07-09 Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability
ZDI-14-222 ZDI-CAN-2239 Microsoft CVE-2014-2809 6.8 2014-07-09 Microsoft Internet Explorer CImgElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-221 ZDI-CAN-2231 Microsoft CVE-2014-2780 4.4 2014-07-09 (Pwn2Own) Microsoft Windows DirectShow Privilege Escalation Vulnerability
ZDI-14-220 ZDI-CAN-2228 Microsoft CVE-2014-1767 6.9 2014-07-09 (Pwn2Own) Microsoft Windows AFD.SYS Dangling Pointer Privilege Escalation Vulnerability
ZDI-14-219 ZDI-CAN-2226 Microsoft CVE-2014-1765 6.8 2014-07-09 (Pwn2Own) Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability
ZDI-14-218 ZDI-CAN-2224 Microsoft CVE-2014-2781 4.6 2014-07-09 (Pwn2Own) Microsoft On-Screen Keyboard Privilege Escalation Vulnerability
ZDI-14-217 ZDI-CAN-2212 Microsoft CVE-2014-1763 6.8 2014-07-09 (Pwn2Own) Microsoft Internet Explorer CSS Memory Corruption Vulnerability
ZDI-14-216 ZDI-CAN-2203 Microsoft CVE-2014-2792 6.8 2014-07-09 Microsoft Internet Explorer CDOMNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-215 ZDI-CAN-2169 Microsoft CVE-2014-2791 6.8 2014-07-09 Microsoft Internet Explorer CAryWindowTbl Use-After-Free Remote Code Execution Vulnerability
ZDI-14-214 ZDI-CAN-1983 Foxit CVE-2014-4646 7.5 2014-06-30 Foxit PDF SDK DLL FPDFBookmark_GetTitle Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-213 ZDI-CAN-2240 Microsoft CVE-2014-2782 6.8 2014-06-18 Microsoft Internet Explorer ControlTracker Use-After-Free Remote Code Execution Vulnerability
ZDI-14-212 ZDI-CAN-2271 Microsoft CVE-2014-0282 6.8 2014-06-18 Microsoft Internet Explorer CInput Use-After-Free Remote Code Execution Vulnerability
ZDI-14-211 ZDI-CAN-2047 Symantec CVE-2013-5017 7.9 2014-06-18 Symantec Web Gateway user.php SQL Injection and snmpConfig.php Command Injection Remote Code Execution Vulnerability
ZDI-14-210 ZDI-CAN-2120 Hewlett-Packard CVE-2014-2611 9.0 2014-06-18 Hewlett-Packard IT Executive Scorecard fndwar Directory Traversal Remote Code Execution Vulnerability
ZDI-14-209 ZDI-CAN-2117 Hewlett-Packard CVE-2014-2610 7.1 2014-06-18 Hewlett-Packard IT Executive Scorecard CAP File Upload Directory Traversal Remote Code Execution Vulnerability
ZDI-14-208 ZDI-CAN-2116 Hewlett-Packard CVE-2014-2609 10.0 2014-06-18 Hewlett-Packard IT Executive Scorecard Java Glassfish Admin Console Remote Code Execution Vulnerability
ZDI-14-207 ZDI-CAN-2289 AlienVault CVE-2014-4153 7.8 2014-06-13 AlienVault OSSIM av-centerd Util.pm get_file Information Disclosure Vulnerability
ZDI-14-206 ZDI-CAN-2284 AlienVault CVE-2014-4152 10.0 2014-06-13 AlienVault OSSIM av-centerd Util.pm remote_task Remote Code Execution Vulnerability
ZDI-14-205 ZDI-CAN-2293 AlienVault CVE-2014-4151 10.0 2014-06-13 AlienVault OSSIM av-centerd Util.pm set_file Arbitrary File Write Remote Code Execution Vulnerability
ZDI-14-204 ZDI-CAN-2283 AlienVault CVE-2014-3805 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm get_license Remote Code Execution Vulnerability
ZDI-14-203 ZDI-CAN-2294 AlienVault CVE-2014-3804 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm set_file Remote Code Execution Vulnerability
ZDI-14-202 ZDI-CAN-2295 AlienVault CVE-2014-3804 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm update_system_info_debian_package Remote Code Execution Vulnerability
ZDI-14-201 ZDI-CAN-2291 AlienVault CVE-2014-3804 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm ossec_task Remote Code Execution Vulnerability
ZDI-14-200 ZDI-CAN-2297 AlienVault CVE-2014-3804 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm admin_ip Remote Code Execution Vulnerability
ZDI-14-199 ZDI-CAN-2281 AlienVault CVE-2014-3805 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm get_log_line Remote Code Execution Vulnerability
ZDI-14-198 ZDI-CAN-2282 AlienVault CVE-2014-3805 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm update_system/upgrade_pro_web Remote Code Execution Vulnerability
ZDI-14-197 ZDI-CAN-2296 AlienVault CVE-2014-3804 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm sync_rserver Remote Code Execution Vulnerability
ZDI-14-196 ZDI-CAN-2298 AlienVault CVE-2014-3804 10.0 2014-06-11 AlienVault OSSIM av-centerd Util.pm framework_ip Remote Code Execution Vulnerability
ZDI-14-195 ZDI-CAN-2031 Hewlett-Packard CVE-2013-6221 10.0 2014-06-11 Hewlett-Packard AutoPass License Server Remote Code Execution Vulnerability
ZDI-14-194 ZDI-CAN-2267 Microsoft CVE-2014-1799 6.8 2014-06-11 Microsoft Internet Explorer CTreeNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-193 ZDI-CAN-2237 Microsoft CVE-2014-2756 6.8 2014-06-11 Microsoft Internet Explorer CMarkupPointer Use-After-Free Remote Code Execution Vulnerability
ZDI-14-192 ZDI-CAN-2227 Microsoft CVE-2014-1766 7.5 2014-06-11 (Pwn2Own) Microsoft Internet Explorer CDispNodeBase Use-After-Free Remote Code Execution Vulnerability
ZDI-14-191 ZDI-CAN-2223 Microsoft CVE-2014-1805 7.5 2014-06-11 Microsoft Internet Explorer CWindow Use-After-Free Remote Code Execution Vulnerability
ZDI-14-190 ZDI-CAN-2213 Microsoft CVE-2014-1764 7.2 2014-06-11 (Pwn2Own) Microsoft Internet Explorer Protected Mode Bypass Vulnerability
ZDI-14-189 ZDI-CAN-2218 Microsoft CVE-2014-2777 7.2 2014-06-11 (Pwn2Own) Microsoft Internet Explorer Protected Mode Bypass Vulnerability
ZDI-14-188 ZDI-CAN-2202 Microsoft CVE-2014-2776 6.8 2014-06-11 Microsoft Internet Explorer Js::PathTypeHandlerBase Improper Indexing Remote Code Execution Vulnerability
ZDI-14-187 ZDI-CAN-2166 Microsoft CVE-2014-2775 6.8 2014-06-11 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-186 ZDI-CAN-2099 Microsoft CVE-2014-1762 6.8 2014-06-11 (Pwn2Own\Pwn4Fun) Microsoft Internet Explorer CDOMTextNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-185 ZDI-CAN-2199 Microsoft CVE-2014-2772 6.8 2014-06-11 Microsoft Internet Explorer textContent Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-184 ZDI-CAN-2159 Microsoft CVE-2014-1800 6.8 2014-06-11 Microsoft Internet Explorer CTreePos Use-After-Free Remote Code Execution Vulnerability
ZDI-14-183 ZDI-CAN-2145 Microsoft CVE-2014-1797 6.8 2014-06-11 Microsoft Internet Explorer isindex Memory Corruption Remote Code Execution Vulnerability
ZDI-14-182 ZDI-CAN-2144 Microsoft CVE-2014-2758 6.8 2014-06-11 Microsoft Internet Explorer CDXTFilterNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-181 ZDI-CAN-2134 Microsoft CVE-2014-2757 6.8 2014-06-11 Microsoft Internet Explorer CElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-180 ZDI-CAN-2110 Microsoft CVE-2014-1785 6.8 2014-06-11 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-179 ZDI-CAN-2076 Microsoft CVE-2014-1782 6.8 2014-06-11 Microsoft Internet Explorer CGeneratedContent Use-After-Free Remote Code Execution Vulnerability
ZDI-14-178 ZDI-CAN-2055 Microsoft CVE-2014-1780 6.8 2014-06-11 Microsoft Internet Explorer CElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-177 ZDI-CAN-2057 Microsoft CVE-2014-1779 6.8 2014-06-11 Microsoft Internet Explorer CElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-176 ZDI-CAN-2039 Microsoft CVE-2014-0282 6.8 2014-06-11 Microsoft Internet Explorer CFormElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-175 ZDI-CAN-2037 Microsoft CVE-2014-1775 6.8 2014-06-11 Microsoft Internet Explorer CPeerFactoryUrlMap Use-After-Free Remote Code Execution Vulnerability
ZDI-14-174 ZDI-CAN-2025 Microsoft CVE-2014-1774 6.8 2014-06-11 Microsoft Internet Explorer CGeneratedTreeNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-173 ZDI-CAN-2304 OpenSSL CVE-2014-0195 7.5 2014-06-05 OpenSSL DTLS Fragment Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-14-172 ZDI-CAN-2320 Samsung CVE-2014-3911 7.5 2014-06-04 Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 Multiple Methods Remote Code Execution Vulnerability
ZDI-14-171 ZDI-CAN-2322 Samsung CVE-2014-3911 7.5 2014-06-04 Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 FrameAdvanceReader Method Remote Code Execution Vulnerability
ZDI-14-170 ZDI-CAN-2321 Samsung CVE-2014-3911 7.5 2014-06-04 Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 DeleteDeviceProfile Method Remote Code Execution Vulnerability
ZDI-14-169 ZDI-CAN-2317 Samsung CVE-2014-3912 7.5 2014-06-04 Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 FindConfigChildeKeyList Method Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-168 ZDI-CAN-2311 Samsung CVE-2014-3911 7.5 2014-06-04 Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ChangeControlLocalName Method Remote Code Execution Vulnerability
ZDI-14-167 ZDI-CAN-2307 Samsung CVE-2014-3911 7.5 2014-06-04 Samsung iPOLiS Device Manager XNSSDKWINDOW.XnsSdkWindowCtrlForIpInstaller.1 Start Method Remote Code Execution Vulnerability
ZDI-14-166 ZDI-CAN-2247 Rocket Software CVE-2014-3914 10.0 2014-06-02 (0Day) Rocket Servergraph Admin Center for TSM userRequest save_server_groups Command Remote Code Execution Vulnerability
ZDI-14-165 ZDI-CAN-2248 Rocket Software CVE-2014-3914 7.8 2014-06-02 (0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet del Command Denial of Service Vulnerability
ZDI-14-164 ZDI-CAN-2259 Rocket Software CVE-2014-3915 10.0 2014-06-02 (0Day) Rocket Servergraph Admin Center for TSM userRequest/tsmRequest Command Injection Remote Code Execution Vulnerability
ZDI-14-163 ZDI-CAN-2260 Rocket Software CVE-2014-3914 7.8 2014-06-02 (0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet readDataFile Command Information Disclosure Vulnerability
ZDI-14-162 ZDI-CAN-2262 Rocket Software CVE-2014-3914 10.0 2014-06-02 (0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet run/runClear Command Remote Code Execution Vulnerability
ZDI-14-161 ZDI-CAN-2263 Rocket Software CVE-2014-3914 10.0 2014-06-02 (0Day) Rocket Servergraph Admin Center for TSM fileRequestServlet writeDataFile Command Remote Code Execution Vulnerability
ZDI-14-160 ZDI-CAN-2268 Ericom CVE-2014-3913 10.0 2014-06-02 (0Day) Ericom AccessNow Server Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-159 ZDI-CAN-2003 VMWare, Inc. CVE-2014-3790 6.0 2014-05-30 (0Day) VMware vCenter Server Appliance Ruby vSphere Console Privilege Escalation Vulnerability
ZDI-14-158 ZDI-CAN-1968 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse ConnectionType.getConnection Remote Code Execution Vulnerability
ZDI-14-157 ZDI-CAN-1967 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse ConnectionType.isInput Remote Code Execution Vulnerability
ZDI-14-156 ZDI-CAN-1966 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getSampleRow Remote Code Execution Vulnerability
ZDI-14-155 ZDI-CAN-1965 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getFieldTypes Remote Code Execution Vulnerability
ZDI-14-154 ZDI-CAN-1964 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getFieldNames Remote Code Execution Vulnerability
ZDI-14-153 ZDI-CAN-1963 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.setParams Remote Code Execution Vulnerability
ZDI-14-152 ZDI-CAN-1962 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.destroy Remote Code Execution Vulnerability
ZDI-14-151 ZDI-CAN-1961 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.dispose Remote Code Execution Vulnerability
ZDI-14-150 ZDI-CAN-1960 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getTableNames Remote Code Execution Vulnerability
ZDI-14-149 ZDI-CAN-1959 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.setScanDepth Remote Code Execution Vulnerability
ZDI-14-148 ZDI-CAN-1958 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.canDiscover Remote Code Execution Vulnerability
ZDI-14-147 ZDI-CAN-1957 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getError Remote Code Execution Vulnerability
ZDI-14-146 ZDI-CAN-1956 Sybase CVE-2014-3457 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.reset Remote Code Execution Vulnerability
ZDI-14-145 ZDI-CAN-1954 Sybase CVE-2014-3458 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getErrors Remote Code Execution Vulnerability
ZDI-14-144 ZDI-CAN-1955 Sybase CVE-2014-3458 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse ConnectionType.getName Remote Code Execution Vulnerability
ZDI-14-143 ZDI-CAN-1952 Sybase CVE-2014-3458 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse ConnectionType.getParamNames Remote Code Execution Vulnerability
ZDI-14-142 ZDI-CAN-1953 Sybase CVE-2014-3458 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse ConnectionType.getXmlDescription Remote Code Execution Vulnerability
ZDI-14-141 ZDI-CAN-1951 Sybase CVE-2014-3458 7.5 2014-05-22 (0Day) SAP Sybase ESP esp_parse Connection.getType Remote Code Execution Vulnerability
ZDI-14-140 ZDI-CAN-1989 Microsoft CVE-2014-1770 6.8 2014-05-21 (0Day) Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-139 ZDI-CAN-2095 Advantech CVE-2014-0773 7.5 2014-05-19 Advantech WebAccess bwocxrun.ocx CreateProcess Remote Code Execution Vulnerability
ZDI-14-138 ZDI-CAN-2094 Advantech CVE-2014-0772 5.0 2014-05-19 Advantech WebAccess bwocxrun.ocx OpenUrlToBufferTimeout Information Disclosure Vulnerability
ZDI-14-137 ZDI-CAN-2093 Advantech CVE-2014-0771 5.0 2014-05-19 Advantech WebAccess bwocxrun.ocx OpenUrlToBuffer Information Disclosure Vulnerability
ZDI-14-136 ZDI-CAN-2160 Cogent Real-Time Systems CVE-2014-3789 7.5 2014-05-19 Cogent DataHub Command Injection Remote Code Execution Vulnerability
ZDI-14-135 ZDI-CAN-2192 Cogent Real-Time Systems CVE-2014-3788 7.5 2014-05-19 Cogent DataHub Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-134 ZDI-CAN-1946 Novell CVE-2014-3460 6.8 2014-05-19 (0Day) Novell NetIQ Sentinel Agent Manager NQMcsVarSet DumpToFile Remote Code Execution Vulnerability
ZDI-14-133 ZDI-CAN-1906 SolarWinds CVE-2014-3459 7.5 2014-05-19 (0Day) SolarWinds Network Configuration Manager PEstrarg1 Heap Overflow Remote Code Execution Vulnerability
ZDI-14-132 ZDI-CAN-2211 Adobe CVE-2014-0512 4.6 2014-05-19 (Pwn2Own) Adobe Reader Sandbox Bypass Remote Code Execution Vulnerability
ZDI-14-131 ZDI-CAN-2210 Adobe CVE-2014-0511 6.8 2014-05-19 (Pwn2Own) Adobe Reader PDF417 Barcode Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-14-130 ZDI-CAN-2235 Adobe CVE-2014-0510 6.8 2014-05-19 (Pwn2Own) Adobe Flash Display Object Memory Corruption Remote Code Execution Vulnerability
ZDI-14-129 ZDI-CAN-1856 Microsoft CVE-2014-3802 6.8 2014-05-14 Microsoft DIA SDK msdia.dll Memory Corruption Vulnerability
ZDI-14-128 ZDI-CAN-2001 Adobe CVE-2014-0527 6.8 2014-05-13 Adobe Reader AcroPDF messageHandler Use-After-Free Remote Code Execution Vulnerability
ZDI-14-127 ZDI-CAN-2102 Symantec CVE-2014-1649 10.0 2014-05-13 Symantec Workspace Streaming Agent XMLRPC Request putFile Method Remote Code Execution Vulnerability
ZDI-14-126 ZDI-CAN-2245 Google CVE-2014-1736 6.8 2014-05-13 Google Chrome ImageData Signedness Error Remote Code Execution Vulnerability
ZDI-14-125 ZDI-CAN-2101 Microsoft CVE-2014-0310 6.8 2014-05-13 Microsoft Internet Explorer Attribute Double Free Remote Code Execution Vulnerability
ZDI-14-124 ZDI-CAN-2000 Borland   7.5 2014-05-05 (0Day) Borland Silk Central TeeChart ActiveX Control GridLink Remote Code Execution Vulnerability
ZDI-14-123 ZDI-CAN-1857 Borland   7.8 2014-05-05 (0Day) Borland StarTeam Web Server AttachmentService performCheckoutFile Remote Information Disclosure Vulnerability
ZDI-14-122 ZDI-CAN-1884 Kaspersky   10.0 2014-05-02 Kaspersky Internet Security prremote.dll Use-After-Free Remote Code Execution Vulnerability
ZDI-14-121 ZDI-CAN-2208 Apple CVE-2014-1318 6.9 2014-05-02 (Pwn2Own\Pwn4Fun) Apple OS X Graphics Driver Memory Corruption Remote Code Execution Vulnerability
ZDI-14-120 ZDI-CAN-2207 Apple CVE-2014-1320 2.1 2014-05-02 (Pwn2Own\Pwn4Fun) Apple OS X IOKit Kernel Information Disclosure Vulnerability
ZDI-14-119 ZDI-CAN-2141 Microsoft CVE-2014-0285 6.8 2014-05-02 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-118 ZDI-CAN-2108 Indusoft CVE-2014-0780 7.5 2014-05-02 InduSoft Web Studio Directory Traversal Remote Code Execution Vulnerability
ZDI-14-117 ZDI-CAN-2041 Ecava CVE-2014-0786 7.5 2014-05-02 Ecava IntegraXor Guest Acccount Information Disclosure Vulnerability
ZDI-14-116 ZDI-CAN-2013 Advantech CVE-2014-0768 7.5 2014-04-24 Advantech WebAccess webvact.ocx AccessCode2 Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-115 ZDI-CAN-1874 SolarWinds   6.8 2014-04-23 SolarWinds Server and Application Monitor PEstrarg1 ActiveX Heap Overflow Remote Code Execution Vulnerability
ZDI-14-114 ZDI-CAN-2054 Oracle CVE-2014-0456 10.0 2014-04-23 Oracle Java System.arraycopy() Race Condition Remote Code Execution Vulnerability
ZDI-14-113 ZDI-CAN-2131 Microsoft CVE-2014-0290 6.8 2014-04-23 Microsoft Internet Explorer CMarkup Undo execCommand Use-After-Free Remote Code Execution Vulnerability
ZDI-14-112 ZDI-CAN-2132 Microsoft CVE-2014-0278 6.8 2014-04-23 Microsoft Internet Explorer CSS Out-Of-Bounds Indexing Remote Code Execution Vulnerability
ZDI-14-111 ZDI-CAN-2019 Oracle CVE-2014-2407 6.8 2014-04-21 Oracle Data Quality LoaderWizard ActiveX Remote Code Execution Vulnerability
ZDI-14-110 ZDI-CAN-1937 Oracle CVE-2014-2418 7.5 2014-04-21 Oracle Data Quality FileChooserDlg onChangeDirectory Remote Code Execution Vulnerability
ZDI-14-109 ZDI-CAN-1936 Oracle CVE-2014-2415 7.5 2014-04-21 Oracle Data Quality PostcardPreviewInt onclose Remote Code Execution Vulnerability
ZDI-14-108 ZDI-CAN-1935 Oracle CVE-2014-2417 7.5 2014-04-21 Oracle Data Quality DscXB onloadstatechange Remote Code Execution Vulnerability
ZDI-14-107 ZDI-CAN-1934 Oracle CVE-2014-2416 7.5 2014-04-21 Oracle Data Quality DateTimeWrapper onchange Remote Code Execution Vulnerability
ZDI-14-106 ZDI-CAN-2048 Oracle CVE-2014-2424 7.5 2014-04-21 Oracle Event Processing FileUploadServlet Remote Code Execution Vulnerability
ZDI-14-105 ZDI-CAN-2058 Oracle CVE-2014-0457 10.0 2014-04-21 Oracle Java ScriptEngineManager Sandbox Bypass Remote Code Execution Vulnerability
ZDI-14-104 ZDI-CAN-2060 Oracle CVE-2014-0432 10.0 2014-04-21 Oracle Java permuteArguments Sandbox Bypass Remote Code Execution Vulnerability
ZDI-14-103 ZDI-CAN-2059 Oracle CVE-2014-0455 10.0 2014-04-21 Oracle Java DropArguments Sandbox Bypass Remote Code Execution Vulnerability
ZDI-14-102 ZDI-CAN-2038 Oracle CVE-2014-2421 10.0 2014-04-21 Oracle Java JPEG Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-101 ZDI-CAN-2112 Microsoft CVE-2014-0321 6.8 2014-04-21 Microsoft Internet Explorer CTreeNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-100 ZDI-CAN-1833 Hewlett-Packard CVE-2013-6213 10.0 2014-04-17 Hewlett-Packard Virtual User Generator EmulationAdmin Service Information Disclosure Vulnerability
ZDI-14-099 ZDI-CAN-1977 Hewlett-Packard CVE-2013-6215 8.5 2014-04-17 Hewlett-Packard Universal CMDB Integration Service UploadScansServlet Remote Code Execution Vulnerability
ZDI-14-098 ZDI-CAN-2028 IBM CVE-2013-6748 7.5 2014-04-17 IBM Lotus Quickr ActiveX Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-097 ZDI-CAN-2018 CA CVE-2014-2210 7.8 2014-04-17 CA ERwin Web Portal MIMM ProfileIconServlet Multiple Information Disclosure Vulnerabilities
ZDI-14-096 ZDI-CAN-2017 CA CVE-2014-2210 7.8 2014-04-17 CA ERwin Web Portal MIMM FileAccessServiceProvider Denial of Service Vulnerability
ZDI-14-095 ZDI-CAN-2016 CA CVE-2014-2210 9.0 2014-04-17 CA ERwin Web Portal MIMM ConfigServiceProvider Information Disclosure Vulnerability
ZDI-14-094 ZDI-CAN-2015 CA CVE-2014-2210 7.1 2014-04-17 CA ERwin Web Portal MIMM downloadScriptFile.do Information Disclosure Vulnerability
ZDI-14-093 ZDI-CAN-2105 CA CVE-2014-2210 9.4 2014-04-17 CA ERwin Web Portal MIMM ConfigServiceProviderServlet Remote File Creation/Overwrite Vulnerability
ZDI-14-092 ZDI-CAN-2216 Adobe CVE-2014-0506 6.8 2014-04-11 (Pwn2Own) Adobe Flash ExternalInterface Use-After-Free Remote Code Execution Vulnerability
ZDI-14-091 ZDI-CAN-2221 Apple CVE-2014-1303 6.8 2014-04-11 (Pwn2Own) Apple Safari Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-090 ZDI-CAN-2206 Apple CVE-2014-1300 6.8 2014-04-11 (Pwn2Own\Pwn4Fun) Apple Webkit JSStringJoiner Memory Corruption Remote Code Execution Vulnerability
ZDI-14-089 ZDI-CAN-2234 Google CVE-2014-1715 6.8 2014-04-11 (Pwn2Own) Google Chrome Directory Traversal Sandbox Escape Vulnerability
ZDI-14-088 ZDI-CAN-2233 Google CVE-2014-1705 6.8 2014-04-11 (Pwn2Own) Google Chrome V8 Arbitrary Memory Read/Write Remote Code Execution Vulnerability
ZDI-14-087 ZDI-CAN-2230 Google CVE-2014-1714 6.8 2014-04-11 (Pwn2Own) Google Chrome Clipboard Sandbox Escape Vulnerability
ZDI-14-086 ZDI-CAN-2229 Google CVE-2014-1713 6.8 2014-04-11 (Pwn2Own) Google Chrome Blink Use-After-Free Remote Code Execution Vulnerability
ZDI-14-085 ZDI-CAN-2225 Mozilla CVE-2014-1514 6.8 2014-04-11 (Pwn2Own) Mozilla Firefox TypedArrayObject Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-14-084 ZDI-CAN-2220 Mozilla CVE-2014-1513 6.8 2014-04-11 (Pwn2Own) Mozilla Firefox ArrayBuffer Out-Of-Bounds Read/Write Remote Code Execution Vulnerability
ZDI-14-083 ZDI-CAN-2219 Mozilla CVE-2014-1512 6.8 2014-04-11 (Pwn2Own) Mozilla Firefox TypeObject Use-After-Free Remote Code Execution Vulnerability
ZDI-14-082 ZDI-CAN-2215 Mozilla CVE-2014-1511 6.8 2014-04-11 (Pwn2Own) Mozilla Firefox Pop-Up Blocker Bypass Vulnerability
ZDI-14-081 ZDI-CAN-2214 Mozilla CVE-2014-1510 6.8 2014-04-11 (Pwn2Own) Mozilla Firefox Privileged Content Loading Remote Code Execution Vulnerability
ZDI-14-080 ZDI-CAN-2122 Microsoft CVE-2014-1760 6.8 2014-04-10 Microsoft Internet Explorer CFormatCache<CSvgFormat>::AddRefData Improper Indexing Remote Code Execution Vulnerability
ZDI-14-079 ZDI-CAN-2111 Microsoft CVE-2014-1753 6.8 2014-04-10 Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability
ZDI-14-078 ZDI-CAN-2077 Microsoft CVE-2014-0325 6.8 2014-04-10 Microsoft Internet Explorer CElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-077 ZDI-CAN-1938 Advantech CVE-2014-0763 7.5 2014-04-10 Advantech WebAccess DBVisitor.dll SQL Injection Remote Code Execution Vulnerability
ZDI-14-076 ZDI-CAN-2009 Advantech CVE-2014-0764 7.5 2014-04-10 Advantech WebAccess webvact.ocx NodeName Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-075 ZDI-CAN-2014 Advantech CVE-2014-0770 7.5 2014-04-10 Advantech WebAccess webvact.ocx UserName Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-074 ZDI-CAN-2012 Advantech CVE-2014-0767 7.5 2014-04-10 Advantech WebAccess webvact.ocx AccessCode Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-073 ZDI-CAN-2011 Advantech CVE-2014-0766 7.5 2014-04-10 Advantech WebAccess webvact.ocx NodeName2 Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-072 ZDI-CAN-2010 Advantech CVE-2014-0765 7.5 2014-04-10 Advantech WebAccess webvact.ocx GotoCmd Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-071 ZDI-CAN-1780 WellinTech CVE-2014-0787 10.0 2014-04-10 WellinTech KingScada AEserver.exe Remote Code Execution Vulnerability
ZDI-14-070 ZDI-CAN-2167 Adobe CVE-2014-0507 7.5 2014-04-08 Adobe Flash Player Regular Expression Stack Overflow Remote Code Execution Vulnerability
ZDI-14-069 ZDI-CAN-2026 Sophos CVE-2014-2849 8.5 2014-04-08 Sophos Web Appliance Privilege Escalation and Remote Code Execution Vulnerability
ZDI-14-068 ZDI-CAN-1898 SolarWinds   7.8 2014-04-08 SolarWinds Firewall Security Manager FSMWebService Information Disclosure Vulnerability
ZDI-14-067 ZDI-CAN-1883 SolarWinds   7.5 2014-04-08 SolarWinds Server and Application Monitor VSReport Remote Code Execution Vulnerability
ZDI-14-066 ZDI-CAN-1875 SolarWinds   7.5 2014-04-08 SolarWinds Server and Application Monitor Apex Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-065 ZDI-CAN-1978 SolarWinds   5.1 2014-04-08 SolarWinds Server and Application Monitor C1Chart3D8 Array Indexing Remote Code Execution Vulnerability
ZDI-14-064 ZDI-CAN-1899 SolarWinds   7.5 2014-04-08 SolarWinds Server and Application Monitor wpdlx Remote Code Execution Vulnerability
ZDI-14-063 ZDI-CAN-1932 Hewlett-Packard CVE-2013-6210 7.5 2014-04-08 HP Unified Functional Testing ExGrid SaveXML Remote Code Execution Vulnerability
ZDI-14-062 ZDI-CAN-2100 Microsoft CVE-2014-0285 7.5 2014-04-08 Microsoft Internet Explorer NavigateToBookmark Use-After-Free Remote Code Execution Vulnerability
ZDI-14-061 ZDI-CAN-2074 Microsoft CVE-2014-0274 6.8 2014-04-08 Microsoft Internet Explorer CDomRange Use-After-Free Remote Code Execution Vulnerability
ZDI-14-060 ZDI-CAN-2133 EMC CVE-2014-2276 5.0 2014-04-08 EMC Connectrix Manager Converged Network Edition inmservlets.war FileUploadController Servlet Information Disclosure Vulnerability
ZDI-14-059 ZDI-CAN-1876 Schneider Electric CVE-2014-0779 6.8 2014-04-03 Schneider-Electric ClearSCADA ServerMain.exe OPF File Parsing Remote Code Execution Vulnerability
ZDI-14-058 ZDI-CAN-2036 Mozilla CVE-2014-1486 6.8 2014-04-03 Mozilla Firefox imgRequestProxy Use-After-Free Remote Code Execution Vulnerability
ZDI-14-057 ZDI-CAN-2109 Apple CVE-2014-1290 6.8 2014-04-03 Apple Mobile Safari isindex Use-After-Free Remote Code Execution Vulnerability
ZDI-14-056 ZDI-CAN-1688 Avaya   10.0 2014-04-03 Avaya IP Office one-X Portal Remote Code Execution Vulnerability
ZDI-14-055 ZDI-CAN-1595 Novell CVE-2013-3706 8.5 2014-04-03 Novell ZENworks Configuration Management PreBoot Service Information Disclosure Vulnerability
ZDI-14-054 ZDI-CAN-1881 Schneider Electric CVE-2014-0774 6.8 2014-04-03 Schneider Electric OPC Factory Server OFS Client Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-053 ZDI-CAN-1895 Splunk CVE-2013-6771 9.0 2014-04-03 Splunk runshellscript echo.sh Remote Code Execution Vulnerability
ZDI-14-052 ZDI-CAN-1864 Splunk CVE-2013-6771 9.0 2014-04-03 Splunk collect file Remote Code Execution Vulnerability
ZDI-14-051 ZDI-CAN-1509 Hewlett-Packard CVE-2013-4841 10.0 2014-04-03 Hewlett-Packard LeftHand Virtual SAN Appliance dbd_manager libens Unmarshalling Remote Code Execution Vulnerability
ZDI-14-050 ZDI-CAN-1929 McAfee   7.8 2014-04-03 McAfee Cloud Identity Manager ExtensionAccessServlet Information Disclosure Vulnerability
ZDI-14-049 ZDI-CAN-1945 Apple CVE-2014-1251 6.8 2014-04-03 Apple QuickTime clef Atom Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-048 ZDI-CAN-1943 Apple CVE-2014-1246 7.5 2014-04-03 Apple QuickTime ftab Atom Remote Code Execution Vulnerability
ZDI-14-047 ZDI-CAN-1939 Apple CVE-2014-1245 7.5 2014-04-03 Apple QuickTime stsz Atom Remote Code Execution Vulnerability
ZDI-14-046 ZDI-CAN-1940 Apple CVE-2014-1247 7.5 2014-04-03 Apple QuickTime dref Atom Remote Code Execution Vulnerability
ZDI-14-045 ZDI-CAN-1860 Apple CVE-2014-1244 10.0 2014-04-03 Apple QuickTime stsz Atom Remote Code Execution Vulnerability
ZDI-14-044 ZDI-CAN-1737 Apple CVE-2014-1243 6.8 2014-04-03 Apple QuickTime nam Atom Parsing Remote Code Execution Vulnerability
ZDI-14-043 ZDI-CAN-2084 Hewlett-Packard CVE-2013-6207 9.4 2014-04-03 Hewlett-Packard SiteScope SOAP Arbitrary File Download and Denial of Service Vulnerability
ZDI-14-042 ZDI-CAN-1656 Hewlett-Packard CVE-2013-6203 7.5 2014-04-03 Hewlett-Packard Application Information Optimizer Remote Code Execution Vulnerability
ZDI-14-041 ZDI-CAN-2004 Hewlett-Packard CVE-2013-6204 7.5 2014-04-03 Hewlett-Packard Application Information Optimizer Credential Information Disclosure Vulnerability
ZDI-14-040 ZDI-CAN-2070 Adobe CVE-2014-0498 7.5 2014-04-03 Adobe Flash Player RegExp Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-039 ZDI-CAN-1950 IBM CVE-2013-6724 7.5 2014-04-03 IBM SPSS SamplePower vsflex8l ActiveX Control ComboList Property Remote Code Execution Vulnerability
ZDI-14-038 ZDI-CAN-2020 Oracle CVE-2013-5907 9.3 2014-04-03 Oracle Java TrueType LookupCount Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-037 ZDI-CAN-1970 IBM CVE-2013-5400 10.0 2014-04-03 IBM Platform Symphony DE Auth-Bypass Remote Code Execution Vulnerability
ZDI-14-036 ZDI-CAN-2073 Microsoft CVE-2014-0307 6.8 2014-04-03 Microsoft Internet Explorer HtmlLayout Use-After-Free Remote Code Execution Vulnerability
ZDI-14-035 ZDI-CAN-2072 Microsoft CVE-2014-0308 6.8 2014-04-03 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-034 ZDI-CAN-2046 Microsoft CVE-2014-0313 6.8 2014-04-03 Microsoft Internet Explorer Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-033 ZDI-CAN-2040 Microsoft CVE-2014-0312 7.5 2014-03-20 Microsoft Internet Explorer CSelectElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-032 ZDI-CAN-2033 Microsoft CVE-2014-0299 6.8 2014-03-20 Microsoft Internet Explorer Uninitialized Variable Remote Code Execution Vulnerability
ZDI-14-031 ZDI-CAN-2030 Microsoft CVE-2014-0298 6.8 2014-03-20 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-030 ZDI-CAN-2029 Microsoft CVE-2014-0297 6.8 2014-03-20 Microsoft Internet Explorer CTraversalMarkupPointer Use-After-Free Remote Code Execution Vulnerability
ZDI-14-029 ZDI-CAN-1811 EMC CVE-2013-0946 10.0 2014-02-13 EMC AlphaStor Library Manager 0x4f Command Remote Code Execution Vulnerability
ZDI-14-028 ZDI-CAN-2035 Microsoft CVE-2014-0281 6.8 2014-02-13 Microsoft Internet Explorer CTreeNode Use-After-Free Remote Code Execution Vulnerability
ZDI-14-027 ZDI-CAN-2034 Microsoft CVE-2014-0289 6.8 2014-02-13 Microsoft Internet Explorer CMarkupPointer Use-After-Free Remote Code Execution Vulnerability
ZDI-14-026 ZDI-CAN-2006 Microsoft CVE-2014-0275 6.8 2014-02-13 Microsoft Internet Explorer CAreaElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-025 ZDI-CAN-2005 Microsoft CVE-2014-0274 6.8 2014-02-13 Microsoft Internet Explorer CDomRange Use-After-Free Remote Code Execution Vulnerability
ZDI-14-024 ZDI-CAN-2002 Microsoft CVE-2014-0287 6.8 2014-02-13 Microsoft Internet Explorer CHtmlLayout Use-After-Free Remote Code Execution Vulnerability
ZDI-14-023 ZDI-CAN-1984 Microsoft CVE-2014-0286 6.8 2014-02-13 Microsoft Internet Explorer CInputElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-022 ZDI-CAN-1982 Microsoft CVE-2014-0288 6.8 2014-02-13 Microsoft Internet Explorer CDivElement Use-After-Free Remote Code Execution Vulnerability
ZDI-14-021 ZDI-CAN-1974 Microsoft CVE-2014-0269 6.8 2014-02-13 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-020 ZDI-CAN-1973 Microsoft CVE-2014-0270 6.8 2014-02-13 Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
ZDI-14-019 ZDI-CAN-1877 Microsoft CVE-2014-0263 5.1 2014-02-13 Microsoft Direct2D Graphics Component Remote Code Execution Vulnerability
ZDI-14-018 ZDI-CAN-2027 IBM CVE-2013-6749 7.5 2014-02-13 IBM Lotus Quickr ActiveX Stack Buffer Overflow Remote Code Execution Vulnerability
ZDI-14-017 ZDI-CAN-1969 IBM CVE-2013-5387 6.8 2014-02-13 IBM Platform Symphony DE Remote Code Execution Vulnerability
ZDI-14-016 ZDI-CAN-1623 GE CVE-2014-0751 6.8 2014-02-13 GE Proficy CIMPLICITY CimWebServer File Upload Remote Code Execution Vulnerability
ZDI-14-015 ZDI-CAN-1622 GE CVE-2014-0750 7.5 2014-02-13 GE Proficy CIMPLICITY gefebt.exe File Upload Remote Code Execution Vulnerability
ZDI-14-014 ZDI-CAN-1993 Adobe CVE-2014-0492 5.0 2014-02-05 Adobe Flash Player Jump Opcode Information Leak Vulnerability
ZDI-14-013 ZDI-CAN-1979 Oracle CVE-2013-5907 6.8 2014-02-05 Oracle Java TTF Font Parsing Heap Corruption Remote Code Execution Vulnerability
ZDI-14-012 ZDI-CAN-1553 WellinTech CVE-2013-2826 7.5 2014-02-05 WellinTech KingSCADA KingAlarm & Event KAEManageServer Information Disclosure Vulnerability
ZDI-14-011 ZDI-CAN-1552 WellinTech CVE-2013-2827 7.5 2014-02-05 WellinTech KingScada KingGraphic kxClientDownload ActiveX Remote Code Execution Vulnerability
ZDI-14-010 ZDI-CAN-1666 Hewlett-Packard CVE-2013-6189 10.0 2014-01-29 HP Application Information Optimizer DataDirect OpenAccess GIOP Remote Code Execution Vulnerability
ZDI-14-009 ZDI-CAN-2008 Hewlett-Packard CVE-2013-6195 7.5 2014-01-10 Hewlett-Packard Data Protector Cell Manager crs.exe Multiple Opcodes Remote Code Execution Vulnerability
ZDI-14-008 ZDI-CAN-1885 Hewlett-Packard CVE-2013-2347 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service EXEC_BAR Remote Code Execution Vulnerability
ZDI-14-007 ZDI-CAN-1897 Hewlett-Packard CVE-2013-2350 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service rbda Remote Code Execution Vulnerability
ZDI-14-006 ZDI-CAN-1869 Hewlett-Packard CVE-2013-2345 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service vrda Remote Code Execution Vulnerability
ZDI-14-005 ZDI-CAN-1896 Hewlett-Packard CVE-2013-2349 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service vbda Remote Code Execution Vulnerability
ZDI-14-004 ZDI-CAN-1870 Hewlett-Packard CVE-2013-2346 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service rrda Remote Code Execution Vulnerability
ZDI-14-003 ZDI-CAN-1905 Hewlett-Packard CVE-2013-6194 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service Opcode 42 Remote Code Execution Vulnerability
ZDI-14-002 ZDI-CAN-1892 Hewlett-Packard CVE-2013-2348 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service Opcode 45 and 46 Remote Code Execution Vulnerability
ZDI-14-001 ZDI-CAN-1866 Hewlett-Packard CVE-2013-2344 10.0 2014-01-10 Hewlett-Packard Data Protector Backup Client Service RxNtSetup Remote Code Execution Vulnerability