Verisign iDefense® Vendor-Coordinated Public Vulnerability Reports

The Verisign iDefense Vulnerability Team conducts around-the-clock research and notification of vulnerabilities and exploits that target any of the more than 20,000 closely monitored applications, hardware and operating systems. The iDefense Vulnerability Contributor Program (VCP) compensates individuals who provide iDefense with advance notification of unpublished vulnerabilities and exploit code. The VCP focuses on vulnerability research submissions, presented to iDefense by the general public, defining new vulnerabilities and exploits uncovered in prominent enterprise-level software and infrastructure components. Following is a list of our vendor-coordinated publicly disclosed vulnerabilities:

Archives

RAPPORTS DE VULNÉRABILITÉ
04.10.12	Microsoft .NET Framework GraphicsPathIterator Memory Corruption Vulnerability
04.10.12	Microsoft Internet Explorer Use After Free Vulnerability
03.14.12	Novell ZENworks Configuration Management PreBoot Service Opcode 0x21 Arbitrary File Download Vulnerability
03.14.12	Novell ZENworks Configuration Management PreBoot Service Opcode 0x4c Stack Buffer Overflow Vulnerability
03.14.12	Novell ZENworks Configuration Management PreBoot Service Opcode 0x6c Stack Buffer Overflow Vulnerability
03.07.12	Multiple Vendor WebKit SVG Element Use After Free Vulnerability
03.06.12	IBM DB2 UidKey::getHashCode Integer Signedness Vulnerability
02.14.12	Oracle Java Runtime Environment Memory Corruption Vulnerability
01.18.12	Adobe Reader and Acrobat ICC Processing Integer Overflow Vulnerability
12.13.11	Microsoft Excel LABELSST Record Memory Corruption Vulnerability
12.13.11	Microsoft Internet Explorer Time Element Behavior Use-After-Free Vulnerability
12.13.11	Microsoft OLE CPropertyStorage::ReadMultiple Variant Type Confusion Vulnerability
12.13.11	Microsoft Windows Kernel Invalid Trap-Frame Management Privilege Escalation Vulnerability
12.13.11	Microsoft Windows Media Player DVR-MS Memory Corruption Vulnerability
11.18.11	RealNetworks RealPlayer AAC Codec Memory Corruption Vulnerability
11.18.11	RealNetworks RealPlayer RealVideo Renderer Memory Corruption Vulnerability
11.18.11	RealNetworks RealPlayer RVRENDER Heap Buffer Overflow Vulnerability
11.16.11	Apple Safari font-face Use-After-Free Vulnerability
11.15.11	Multiple Vendor WebKit XML Use-After-Free Vulnerability
11.11.11	HP StorageWorks P4000 Virtual SAN Remote Command Execution Vulnerability
11.09.11	Adobe Shockwave .w32 FLST Heap Buffer Overflow Vulnerability
10.18.11	Novell ZenWorks Handheld Management ReadStatusRecordData Integer Overflow Vulnerability
10.18.11	Novell ZenWorks Handheld Management Unicode String Parsing Integer Overflow Vulnerability
10.14.11	Sybase M-Business Anywhere Insecure Permissions Vulnerability
10.12.11	Apple Mobile OfficeImport Framework Word Document Parsing Memory Corruption Vulnerability
10.12.11	Apple MobileSafari Attachment Viewing Cross Site Scripting Vulnerability
10.11.11	Microsoft Internet Explorer Object Handling Memory Corruption Vulnerability
09.26.11	Novell GroupWise iCal Date Invalid Array Indexing Vulnerability
09.26.11	Novell GroupWise iCal RRULE ByWeekNo Memory Corruption Vulnerability
09.26.11	Novell GroupWise iCal RRULE Time Conversion Invalid Array Indexing Vulnerability