Affiliation/Organization: TippingPoint DVLabs


Time to Patch Stats

For vulnerabilities disclosed through this affiliation where we have sufficient data to calculate the time to patch (44 vulns), the following statistics apply:

Min Time To Patch:9 days
Avg Time To Patch:187 days
Max Time To Patch:1173 days

Other Affiliations

Creditees Affiliated with TippingPoint DVLabs have also affiliated with:

Zero Day Initiative (ZDI) (4)
iDefense Labs VCP (3)
iDefense Labs (2)
Exodus Intelligence (1)
Beyond Security's SecuriTeam Secure Disclosure (1)
via OSVDB (1)
Unaffiliated (1)
Defense Security Information Exchange (1)
US CERT (1)
Infosec Institute (1)
SecuriTeam Secure Disclosure (1)
Vulnerability Research Laboratory (1)
oCERT (1)
vulnerability-lab.com (1)
iSIGHT Partners Global Vulnerability Partnership (1)
via Secunia (1)

Website: http://dvlabs.tippingpoint.com/

Creditees currently or formerly associated with TippingPoint DVLabs (12):
(ordered by association date)

Known SinceNameVulns Through Affiliation
2006-06-18Pedram Amini6
2006-08-08Cody Pierce14
2007-05-10Ganesh Devarajan2
2007-06-04Aaron Portnoy32
2008-10-14Antony Portnoy1
2009-06-02Rob King2
2009-12-17Anonymous1
2010-08-30Hbelite1
2010-12-03Logan Brown12
2010-12-10Zef Cekaj1
2012-02-09Brian Gorenc2
2012-04-10Peter Vreugdenhil1

Disclosed Vulnerabilities (58):

Discl. DateOSVDB IDCVE IDCrediteesTitle
2012-12-17 88719 2012-0411 Brian Gorenc
 Novell iPrint Client op-client-interface-version Parameter Unspecified Remote Code Execution
2012-04-10 81246 2012-0774 Peter Vreugdenhil
 Adobe Reader / Acrobat True Type Font Control Value Table Stream MINDIX opcode PDF File Handling Remote Overflow
2012-02-09 78954 2011-4186 Brian Gorenc
 Novell iPrint Client ActiveX Control GetPrinterURLList2() Function Remote Code Execution
2011-08-09 74425 2011-2419 Aaron Portnoy
Logan Brown
 Adobe Shockwave Player IML32.dll Unspecified Memory Corruption
2011-06-15 73016 2011-0335 Honggang Ren
Carsten Eiram
Aaron Portnoy
Logan Brown
Aniway
Luigi Auriemma
Luigi Auriemma
 Adobe Shockwave Player dirapi.dll Module RIFF-based Director File Multiple Value Remote Code Execution
2011-06-15 73028 2011-2111 Carsten Eiram
Aaron Portnoy
Logan Brown
Luigi Auriemma
Luigi Auriemma
 Adobe Shockwave Player IML32.dll Component Unspecified Memory Corruption
2011-06-15 73031 2011-2116 Aaron Portnoy
Logan Brown
 Adobe Shockwave Player IML32.dll RIFF-based Director File Lnam Chunk Parsing Remote Code Execution
2011-02-09 72514 2011-0569 Aaron Portnoy
Logan Brown
Luigi Auriemma
 Adobe Shockwave Player PFR1 Font Chunk Parsing Remote Code Execution
2011-02-08 72510 2010-4188 Logan Brown
Aaron Portnoy
 Adobe Shockwave Player dirapi.dll Director Movie IFWV Chunk Processing Memory Corruption
2011-02-08 72511 2011-0555 Logan Brown
Aaron Portnoy
 Adobe Shockwave Player TextXtra.x32 Director Movie DEMX RIFF Chunk Processing Memory Corruption
2011-02-08 72512 2011-0556 Logan Brown
Aaron Portnoy
 Adobe Shockwave Player Font Xtra.x32 Director Movie Font Structure Parsing Memory Corruption
2011-02-08 72513 2010-4189 Aaron Portnoy
 Adobe Shockwave Player IML32 Module Director Movie GIF File Parsing Memory Corruption
2010-12-10 69846 2010-4385 Aaron Portnoy
Zef Cekaj
Logan Brown
Logan Brown
 RealPlayer Multiple Products SIPR Stream Crafted Frame Dimensions Remote Overflow
2010-12-10 69850 2010-4390 Aaron Portnoy
Logan Brown
Team lollersk8terz
 RealPlayer Multiple Products IVR File Crafted Header Multiple Overflows
2010-12-03 69596 2010-4294 Aaron Portnoy
Logan Brown
 VMware Multiple Products VMnc Decoder Frame Decompression Memory Corruption
2010-08-30 67705 2010-1818 Rubén Santamarta
Hbelite
 Apple Quicktime QTPlugin.ocx ActiveX IPersistPropertyBag2::Read Function _Marshaled_pUnk Memory Corruption
2010-02-09 62240 2010-0034 Cody Pierce
 Microsoft Office Powerpoint TextCharsAtom Record Handling Remote Code Execution
2009-12-17 61205 2007-2281 Pedram Amini
Anonymous
 HP Storage OpenView Data Protector Cell Manager _rm32.rm_getMem() Function Remote Overflow
2009-12-16 61206 2007-2280 Tenable Network Security
Aaron Portnoy
 HP Storage OpenView Data Protector Backup Client Service MSG_PROTOCOL Command Remote Overflow
2009-12-09 60924 2009-3846 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) ovlogin.exe CGI Multiple Parameter Remote Overflow
2009-12-09 60927 2009-4176 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) ovsessionmgr.exe CGI Multiple Parameter Remote Overflow
2009-12-09 60928 2009-4177 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) webappmon.exe CGI Host Header Handling Remote Overflow
2009-12-09 60929 2009-4178 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) OvWebHelp.exe CGI Topic Parameter Remote Overflow
2009-12-09 60930 2009-4179 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) ovalarm.exe CGI Accept-Language Header Handling Remote Overflow
2009-12-09 60931 2009-4180 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) snmpviewer.exe CGI Host Header Handling Remote Overflow
2009-12-09 60932 2009-4181 Aaron Portnoy
 HP OpenView Network Node Manager (OV NNM) ovwebsnmpsrv.exe CGI sel Parameter Remote Overflow
2009-11-10 59855 2009-2523 Cody Pierce
 Microsoft Windows License Logging Server (llssrv.exe) RPC LlsrLicenseRequestW Method Remote Overflow
2009-08-11 56902 2009-1544 Cody Pierce
 Microsoft Windows Workstation Service NetrGetJoinInformation Function Local Memory Corruption Arbitrary Code Execution
2009-07-14 55845 2009-1539 Anonymous
Aaron Portnoy
 Microsoft DirectX DirectShow quartz.dll QuickTime NumberOfEntries Field Memory Corruption
2009-06-02 54833 2009-0950 Rob King
Will Drewry
 Apple iTunes itms: URI Handling Overflow
2009-06-02 54920 2009-1717 Rob King
 Apple Mac OS X Terminal CSI[4 Xterm Resize Escape Sequence Remote Overflow
2009-04-03 55942 2009-0910 Aaron Portnoy
 VMWare Multiple Products VMnc Codec (vmnc.dll) Open-DML Standard Index dwSize Element Handling Overflow
2009-04-03 55943 2009-0909 Aaron Portnoy
 VMWare Multiple Products VMnc Codec (vmnc.dll) Invalid RFB Message Type Handling Overflow
2008-12-09 50596 2008-4030 Aaron Portnoy
 Microsoft Office Word RTF Object Parsing Arbitrary Code Execution (2008-4030)
2008-10-14 49060 2008-3479 Cody Pierce
Antony Portnoy
 Microsoft Windows Message Queuing Service RPC Request Handling Remote Code Execution
2008-09-12 48123 2008-2468 Aaron Portnoy
 LANDesk Multiple Products QIP Server Service (qipsrvr.exe) Heal Request Packet Handling Overflow
2008-06-04 46013 2008-2541 Sebastian Apelt
Cody Pierce
 CA Secure Content Manager HTTP Gateway Service (icihttp.exe) LIST Command Response Handling Overflow
2008-03-11 42730 2008-0116 Cody Pierce
 Microsoft Excel BIFF File Format Rich Text Tag Malformed Tag Memory Corruption
2008-01-16 40357 2008-0027 Cody Pierce
 Cisco Unified Communications Manager CTL Provider Service Long Request Remote Overflow
2008-01-15 40897 2008-0033 Cody Pierce
 Apple QuickTime Movie File Malformed Image Descriptor (IDSC) Memory Corruption Arbitrary Code Execution
2007-12-18 41488 2007-6242 Aaron Portnoy
 Adobe Flash Player SWF Embedded JPG Handling Arbitrary Code Execution
2007-11-09 43716 2007-4674 Cody Pierce
 Apple QuickTime Crafted Movie Atom Remote Overflow
2007-10-10 39743 2007-5323 Aaron Portnoy
 EMC RepliStor Server Service Remote Overflow
2007-09-27 41365 2007-5084 Aaron Portnoy
 BrightStor Hierarchical Storage Manager (HSM) CsAgent Service Commands Multiple Unspecified SQL Injection
2007-09-27 41363 2007-5082 Anonymous
Sean Larsson
Aaron Portnoy
 BrightStor Hierarchical Storage Manager (HSM) Unspecified CsAgent Service Command Crafted Opcode Multiple Remote Overflows
2007-09-18 38259 2007-4827 Ganesh Devarajan
 Automated Solutions Modbus Slave ActiveX MiniHMI.exe Modbus/TCP Diagnostic Function Arbitrary Code Execution
2007-08-09 39527 2007-3872
2007-1676		 Anonymous
Cody Pierce
Pedram Amini
Aaron Portnoy
 HP OpenView Operations Shared Trace Service (OVTrace) Remote Overflows
2007-07-24 38602 2007-3566 Cody Pierce
 Borland InterBase ibserver.exe create Request Remote Overflow
2007-07-12 37934 2007-2417 Aaron Portnoy
 Progress Server _mprosrv.exe Unspecified Remote Overflow
2007-06-11 37231 2007-3181 Cody Pierce
 Firebird SQL fbserver.exe p_cnct_count Value Remote Overflow
2007-06-04 36104 2007-2279 Aaron Portnoy
 Symantec Veritas Storage Foundation Scheduler Service (VxSchedService.exe) Remote Code Execution
2007-06-04 36983 2007-2419 Pedram Amini
 Macrovision FLEXnet ActiveX (boisweb.dll) Multiple Method Overflow
2007-06-04 42059 2007-2514 Cody Pierce
 Centennial Software XferWan.exe Request Handling Overflow
2007-05-10 35574 2007-0754 Ganesh Devarajan
 Apple QuickTime Movie Sample Table Sample Descriptor (STSD) Parsing Overflow
2007-05-01 35720 2007-2418 Pedram Amini
 Trillian Pro Rendezvous / XMPP Component Remote Overflow
2006-08-08 27852 2006-3638 Cody Pierce
Will Dormann
 Microsoft IE Uninitialized COM Object Memory Corruption
2006-07-11 27154 2006-1314 Pedram Amini
 Microsoft Windows Server Service SRV.SYS First-class Mailslot Message Remote Overflow
2006-06-18 26666 2006-3086 kcope
Pedram Amini
 Microsoft Hyperlink Object Library hlink.dll Link Processing Overflow

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2013 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use