 VULNERABILITIES |
|
 TOOLS |
|
| PUBLICATIONS |
 CONTACT US |
+ |
For more information about our services: |
|
VULNERABILITIES
IOActive security consultants discovered and disclosed the following vulnerabilities.
Buffer Overflow in Mono BigInteger Montgomery Reduction Method
CVE-2007-5197, VU#146292
Synopsis An exploitable buffer overflow vulnerability in the Montgomery reduction method within the Mono Frameworks BigInteger Class (Mono.Math.BigInteger). |
Multiple Total Remote Compromise Vulnerabilities in Mercury SiteScope Monitoring Software
CVE-2007-6257, VU#245025
Synopsis Critical vulnerabilities within the Mercury SiteScope server monitoring software, some of which allow for complete remote compromise of the entire monitored network as well as arbitrary code execution on all servers managed by the SiteScope software. |
Multiple Buffer Overflows in legacy mod_jk2 apache module 2.0.3-DEV and earlier
CVE-2007-6257, VU#245025
Synopsis A buffer overflow in the Host Header field of the legacy version of the mod_jk2 apache module (jakata-tomcat-connectors) which allows for remote code execution in the context of the apache process. |
Static Microsoft Windows WPAD entries might allow interception of traffic
CVE-2007-1692
Synopsis The default configuration of Microsoft Windows uses the Web Proxy Autodiscovery Protocol (WPAD) without static WPAD entries, which might allow remote attackers to intercept web traffic by registerng a proxy server using WINS or DNS, then responding to WPAD requests. National Vulnerability Database technical details |
Numerous WebEOC Vulnerabilities
VU#956762, VU#170394, VU#138538, VU#372797, VU#491770, VU#258834, and VU#388282 Dates First Published July 2005 Synopsis
|