Affiliation/Organization: eEye Digital Security


Time to Patch Stats

For vulnerabilities disclosed through this affiliation where we have sufficient data to calculate the time to patch (63 vulns), the following statistics apply:

Min Time To Patch:3 days
Avg Time To Patch:103 days
Max Time To Patch:316 days

Other Affiliations

Creditees Affiliated with eEye Digital Security have also affiliated with:

Beyond Security's SecuriTeam Secure Disclosure (1)
Cylance Inc. (1)
Security Objectives (1)
Fourteenforty Research Institute (1)
Ridgeway Internet Security, L.L.C. (1)
Privateer Labs (1)
IOActive (1)

Website: http://research.eeye.com

Creditees currently or formerly associated with eEye Digital Security (16):
(ordered by association date)

Known SinceNameVulns Through Affiliation
1998-04-08eEye Digital Security16
2001-05-01Riley Hassell8
2001-05-01Ryan Permeh2
2002-07-10Marc Maiffret1
2002-11-20Derek Soeder25
2002-11-20Drew Copley6
2003-09-10Barnaby Jack7
2003-11-11Yuji Ukai14
2004-05-02Karl Lynn5
2005-06-23Fang Xing10
2006-04-21Ryoji Kanai1
2006-08-16Andre Derek Protas5
2006-11-14JeongWook Matt Oh1
2007-07-09Daniel Soeder1
2007-07-10Greg Linares5
2007-09-20Matt Oh3

Disclosed Vulnerabilities (95):

Discl. DateOSVDB IDCVE IDCrediteesTitle
2008-12-09 50565 2008-4268 Andre Derek Protas
 Microsoft Windows Explorer Saved Search File Handling Arbitrary Code Execution
2007-11-20 40862 2007-6189
2007-5775		 Greg Linares
 BitDefender Online Anti-Virus Scanner ActiveX OScan8.ocx / OScan8.ocx InitX Method Arbitrary Code Execution
2007-11-15 44954 2007-6277 Greg Linares
 Free Lossless Audio Codec (FLAC) libFLAC .FLAC File Handling Multiple Overflows
2007-11-15 44955 2007-6278 Greg Linares
 Free Lossless Audio Codec (FLAC) libFLAC MIME-Type URL Flag Arbitrary File Download
2007-11-15 44956 2007-6279 Greg Linares
 Free Lossless Audio Codec (FLAC) libFLAC .FLAC File Handling Multiple Offset Value Double-free Arbitrary Code Execution
2007-10-10 41371 2007-5331 CA BrightStor ARCServe Backup Message Queuing Service (LQserver.exe) Queue.dll Arbitrary Remote Code Execution
2007-09-20 41353 2007-5003 Sean Larsson
Anonymous
Matt Oh
Andre Derek Protas
Yuji Ukai
 CA BrightStor ARCserve Backup for Laptops & Desktops rxRPC.dll rxrLogin Command Remote Overflow
2007-09-20 41352 2007-5004 Matt Oh
Andre Derek Protas
Yuji Ukai
 CA BrightStor ARCserve Backup for Laptops & Desktops Username Remote Overflow
2007-09-20 41350 2007-5005 Matt Oh
Andre Derek Protas
Yuji Ukai
 CA BrightStor ARCserve Backup for Laptops & Desktops rxRPC.dll rxrReceiveFileFromServer Command Traversal Arbitrary File Overwrite
2007-08-14 36390 2007-1749 Derek Soeder
 Microsoft Windows Vector Markup Language (VML) VGX.DLL CDownloadSink Class Overflow
2007-07-10 35953 2007-1754 Greg Linares
 Microsoft Office Publisher .pub Page Data Handling Arbitrary Code Execution
2007-07-09 37756 2007-3655 Daniel Soeder
 Sun Java Web Start javaws.exe JNLP File Processing codebase Attribute Overflow
2007-06-08 37081 2007-3148 Yahoo! Webcam Viewer ActiveX (ywcvwr.dll) receive Method Overflow
2007-06-08 37082 2007-3147 Yahoo! Webcam Upload ActiveX (ywcupl.dll) send Method Overflow
2007-04-10 37635 2007-1973 Derek Soeder
 Microsoft Windows Virtual DOS Machine (VDM) PhysicalMemory Race Condition Local Privilege Escalation
2007-04-10 34011 2007-1206 Derek Soeder
 Microsoft Windows Kernel Mapped Memory Local Privilege Escalation
2007-04-10 34008 2007-1209 Derek Soeder
 Microsoft Windows Vista CSRSS Local Privilege Escalation
2007-03-27 35637 2007-2374 eEye Digital Security
 Microsoft Windows Unspecified Remote Code Execution
2006-12-07 31788 2006-6385 Derek Soeder
 Intel LAN Driver OID Handler Local Privilege Escalation
2006-12-06 31055 2006-5856 Anonymous
Derek Soeder
 Adobe Download Manager AOM File Handling Section Name Overflow
2006-11-14 30263 2006-4691 JeongWook Matt Oh
 Microsoft Windows Workstation Service Crafted Message Remote Overflow
2006-10-27 31882 2006-5559 eEye Digital Security
 Microsoft MDAC ADODB.Connection ActiveX Control Execute Method Remote Code Execution
2006-08-24 30834 2006-3873 Derek Soeder
 Microsoft IE URLMON.DLL Long URL HTTP Redirect Overflow
2006-08-23 28132 2006-3869 Derek Soeder
NSFOCUS Security Team
 Microsoft IE HTTP 1.1 URL Parsing Overflow
2006-08-16 27976 2006-4221 Andre Derek Protas
 IBM eGatherer ActiveX RunEgatherer Function Overflow
2006-07-13 27333 2006-3687 Barnaby Jack
 D-Link Routers UPnP M-SEARCH Request Overflow
2006-07-13 27158 2006-3623 Barnaby Jack
Derek Soeder
 McAfee ePolicy Orchestrator /spipe/pkg Traversal Arbitrary File Write
2006-05-24 25846 2006-2630 Derek Soeder
 Symantec Client Security / AntiVirus Management Interface Remote Overflow
2006-05-09 25335 2006-0034 Derek Soeder
 Microsoft Windows Distributed Transaction Coordinator (DTC) CRpcIoManagerServer::BuildContext Function Remote Overflow
2006-05-09 25336 2006-1184 Derek Soeder
 Microsoft Windows Distributed Transaction Coordinator (DTC) BuildContextW Request DoS
2006-04-25 25001 2006-2086 Yuji Ukai
 Juniper Networks SSL-VPN IVE JuniperSetupDLL.dll ActiveX ProductName Parameter Overflow
2006-04-21 24883 2006-2007 Yuji Ukai
Ryoji Kanai
 Winny File Transfer Port Unspecified Remote Overflow
2006-02-14 23131 2006-0006 Fang Xing
 Microsoft Windows Media Player Bitmap File Processing Overflow
2006-01-11 22338 2005-3713 Fang Xing
 Apple QuickTime GIF Image Netscape Navigator Application Extension Block Overflow
2006-01-11 18829 2006-0010 eEye Digital Security
 Microsoft Windows Open Type (EOT) Font Handling Remote Overflow
2005-12-13 18823 2005-2827 Derek Soeder
 Microsoft Windows Kernel APC Queue Manipulation Local Privilege Escalation
2005-11-08 18820 2005-2124 Fang Xing
 Microsoft Windows GDI EMF/WMF Metafile Processing Multiple Overflows
2005-11-08 20579 2005-2123 Fang Xing
 Microsoft Windows GDI Metafile SetPalette Entries Overflow
2005-11-03 18825 2005-2628 Fang Xing
Bernhard Mueller
 Macromedia Flash Player Flash.ocx Unspecified Function Arbitrary Code Execution
2005-10-12 18830 2005-2120 Derek Soeder
 Microsoft Windows UMPNPMGR wsprintfW Remote Overflow
2005-10-11 18828 2005-2119 Fang Xing
 Microsoft Windows Distributed Transaction Coordinator (DTC) Memory Modification Remote Code Execution
2005-10-11 18822 2005-2128 Fang Xing
 Microsoft DirectX DirectShow QUARTZ.DLL AVI Processing Overflow
2005-10-11 2692 2005-2127 Fang Xing
 Microsoft Windows Design Tools MDT2DD.DLL COM Object Memory Corruption Command Execution
2005-08-17 19093 2005-2127 Fang Xing
 Microsoft Design Tools msdds.dll COM Object Arbitrary Code Execution
2005-06-23 17576 2005-2052 Fang Xing
 RealPlayer/RealOne vidplin.dll Crafted AVI Overflow
2005-06-14 17308 2005-1206 Yuji Ukai
Derek Soeder
 Microsoft Windows Server Message Block (SMB) Remote Code Execution
2005-06-14 17305 2005-1208 Yuji Ukai
 Microsoft Windows HTML Help (CHM) File Overflow
2005-03-02 14389 2005-0581
2005-0582		 Greg MacManus
Barnaby Jack
 CA License Server/Client Multiple Command Remote Overflow
2005-02-08 13600 2005-0045 Yuji Ukai
Derek Soeder
 Microsoft Windows SMB Transaction Data Overflow
2005-01-11 12842 2004-1049 Yuji Ukai
 Microsoft Windows Cursor and Icon Validation Code Execution
2004-11-04 11582 2004-1109 Karl Lynn
 Kerio Personal Firewall Multiple IP Option DoS
2004-10-27 19906 2004-1094 Yuji Ukai
 InnerMedia DynaZip DUNZIP32.dll Filename Overflow
2004-10-12 10695 2004-0575 Yuji Ukai
 Microsoft Windows Compressed Folders DUNZIP32.DLL File Handling Overflow
2004-10-12 10691 2004-0208 Derek Soeder
 Microsoft Windows Virtual DOS Machine Subsystem Local Privilege Escalation
2004-08-08 5070 2002-0845 Sun iPlanet Chunked Transfer Encoding Overflow
2004-06-15 7091 2004-0586 [email protected]
Drew Copley
 IBM Access Support acpRunner ActiveX File Download
2004-06-15 7090 2004-2663 Drew Copley
 IBM Access Support eGatherer ActiveX File Download
2004-06-10 6851 2004-0550 Greg MacManus
Karl Lynn
Derek Soeder
 RealPlayer embd3260.dll URL Parsing Overflow
2004-05-12 6099 2004-0445
2004-0444		 Derek Soeder
 Symantec Multiple Firewall NBNS Response Processing Overflow
2004-05-12 6100 2004-0445 Barnaby Jack
Karl Lynn
Derek Soeder
 Symantec Multiple Firewall DNS Response DoS
2004-05-12 6101 2004-0444 Karl Lynn
 Symantec Multiple Firewall NBNS Response Remote Heap Corruption
2004-05-12 6102 2004-0444 Barnaby Jack
 Symantec Multiple Firewall Remote DNS KERNEL Overflow
2004-05-02 5745 2004-0431 Karl Lynn
Derek Soeder
 Apple QuickTime (QuickTime.qts) .mov File sample-to-chunk Table Data Handling Overflow
2004-04-20 5596 2004-0375 eEye Digital Security
 Symantec Multiple Products Malformed TCP Packet DoS
2004-04-13 5248 2003-0533 Yuji Ukai
 Microsoft Windows LSASS Remote Overflow
2004-04-13 5252 2003-0906 Yuji Ukai
 Microsoft Windows Metafile Code Execution
2004-04-13 5257 2003-0910 Derek Soeder
 Microsoft Windows Local Descriptor Table Privilege Escalation
2004-04-13 5258 2004-0118 Derek Soeder
 Microsoft Windows Virtual DOS Machine Privilege Escalation
2004-02-27 4072 Barnaby Jack
 ISS Multiple Products SMB Packet Handling Overflow
2004-02-18 3991 2004-0309 Riley Hassell
 ZoneAlarm SMTP Service (vsmon.exe) RCPT TO Command Remote Overflow
2004-02-10 3902 2003-0818 Derek Soeder
 Microsoft Windows ASN.1 Library Integer Overflow
2003-11-11 11461 2003-0812 Yuji Ukai
 Microsoft Windows Workstation Service WKSSVC.DLL Logging Function Remote Overflow
2003-09-10 11797 2003-0715 Barnaby Jack
 Microsoft Windows DCOM RPCSS Service DCERPC Packet Overflow
2003-08-20 2453 2003-0531 Drew Copley
 Microsoft IE My Computer Zone Caching Issue
2003-08-20 2964 2003-0532 Drew Copley
 Multiple Browser Object HTA Execution
2003-06-04 2967 2003-0344 Drew Copley
 Microsoft IE Object Type Property Overflow
2003-03-19 4501 2003-0028 Riley Hassell
 RPC XDR xdrmem_getbytes() Function Remote Overflow
2002-11-20 7846 2002-1185 Drew Copley
Derek Soeder
Riley Hassell
 Microsoft IE PNG Invalid Length Code DoS
2002-07-10 4364 2002-0685 Marc Maiffret
Riley Hassell
 PGP Outlook Plug-in Overflow
2002-04-10 768 2002-0079 Riley Hassell
 Microsoft IIS ASP Chunked Encoding Heap Overflow
2001-06-18 568 2001-0500 Riley Hassell
Ryan Permeh
 Microsoft IIS idq.dll IDA/IDQ ISAPI Remote Overflow
2001-05-11 13962 2001-0747 Riley Hassell
 iPlanet Web Server HTTP Request Long Method Name Overflow
2001-05-01 3323 2001-0241 Riley Hassell
Ryan Permeh
 Microsoft IIS ISAPI .printer Extension Host Header Overflow
1999-06-08 97 1999-0874 eEye Digital Security
 Microsoft IIS ISM.DLL HTR Request Overflow
1999-05-26 40 1999-1521 eEye Digital Security
 Computalynx CMail MAIL FROM Command Remote Overflow
1999-05-26 1137 1999-0887 eEye Digital Security
 FTGate Arbitrary File Access
1999-05-26 11557 eEye Digital Security
 Computalynx CMail VRFY Remote Overflow
1999-03-01 9005 1999-1046 eEye Digital Security
 Ipswitch IMail IMonitor Port 8181 Remote Overflow
1999-03-01 10843 1999-1551 eEye Digital Security
 Ipswitch IMail Web Service Long URL Overflow
1999-02-04 202 1999-0284 eEye Digital Security
 SLMail HELO Command Remote Overflow
1999-02-02 9006 1999-1170 eEye Digital Security
 Ipswitch IMail flags Registry Key Modification Privilege Escalation
1999-01-24 929 1999-0349
1999-1544		 eEye Digital Security
 Microsoft IIS FTP Server NLST Command Overflow
1998-04-08 58018 1999-0284 eEye Digital Security
 MDaemon MTA HELO Command Remote Overflow
1998-04-08 5855 1999-0284 eEye Digital Security
 Microsoft Exchange MTA HELO Command Remote Overflow
1998-04-08 58016 1999-0284 eEye Digital Security
 Ipswitch MTA HELO Command Remote Overflow

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2013 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use