Affiliation/Organization: IBM ISS X-Force

Other Affiliations

Creditees Affiliated with IBM ISS X-Force have also affiliated with:

Google Inc. (1)
Google Chrome Security Team (1)
iDefense Labs (1)
McAfee Avert Labs (1)
Google Security Team (1)

Website: http://www.iss.net/

Creditees currently or formerly associated with IBM ISS X-Force (10):
(ordered by association date)

Known SinceNameVulns Through Affiliation
2007-02-13Neel Mehta2
2007-02-13Alex Wheeler5
2007-12-11Ryan Smith4
2008-02-12IBM ISS X-Force1
2008-06-10Mark Dowd1
2009-07-06Robert Freeman2
2010-10-12Takehiro Takahashi1
2010-12-07Jon Larimer4
2011-08-09Mark Yason2
2012-01-10Shane Garrett1

Disclosed Vulnerabilities (18):

Discl. DateOSVDB IDCVE IDCrediteesTitle
2012-01-10 78210 2012-0003 Shane Garrett
 Microsoft Windows Multimedia Library (winmm.dll) MIDI File Handling Remote Code Execution
2011-08-09 74423 2010-4308 Mark Yason
 Adobe Shockwave Player Unspecified Memory Corruption (2010-4308)
2011-08-09 74424 2010-4309 Mark Yason
 Adobe Shockwave Player Unspecified Memory Corruption (2010-4309)
2010-12-07 70302 2010-2642 Jon Larimer
 t1lib backend/dvi/mdvi-lib/afmparse.c token() Function Overflow
2010-12-07 70300 2010-2640 Jon Larimer
 Evince backend/dvi/mdvi-lib/pk.c pk_load_font() Function Array Indexing Memory Corruption
2010-12-07 70301 2010-2641 Jon Larimer
 Evince backend/dvi/mdvi-lib/vf.c vf_load_font() Function Array Indexing Memory Corruption
2010-12-07 70303 2010-2643 Jon Larimer
 Evince backend/dvi/mdvi-lib/tfmfile.c tfm_load_file() Function Overflow
2010-10-12 68546 2010-3326 Takehiro Takahashi
 Microsoft IE Object Handling Unspecified Memory Corruption (2010-3326)
2010-07-13 66295 2010-1881 Robert Freeman
 Microsoft IE / Office FieldList ActiveX (ACCWIZ.dll) Remote Code Execution
2009-07-06 56272 2008-0020 Robert Freeman
 Microsoft Video ActiveX (msvidctl.dll) Unspecified Remote Arbitrary Code Execution
2008-06-10 46064 2008-0011 Mark Dowd
 Microsoft DirectX MJPEG Codec AVI/ASF File Processing Arbitrary Code Execution
2008-02-12 41463 2007-0065 Ryan Smith
Alex Wheeler
 Microsoft Windows OLE Automation Unspecified Memory Corruption Remote Code Execution
2008-02-12 41458 2008-0105 IBM ISS X-Force
 Microsoft Works File Converter .wps File Header Index Table Handling Arbitrary Code Execution
2008-01-08 40069 2007-0066 Ryan Smith
Alex Wheeler
 Microsoft Windows TCP/IP ICMP RDP Packet Handling Remote DoS
2008-01-08 40070 2007-0069 Alex Wheeler
Ryan Smith
 Microsoft Windows TCP/IP IGMPv3 / MLDv2 Packet Handling Remote Code Execution
2007-12-11 39122 2007-0064 Ryan Smith
Alex Wheeler
 Microsoft Windows Media Format Runtime ASF Parsing Arbitrary Code Execution
2007-07-10 35960 2007-0040 Neel Mehta
 Microsoft Windows Active Directory LDAP Service Convertible Attribute Remote Code Execution
2007-02-13 31888 2006-5270 Neel Mehta
Alex Wheeler
 Microsoft Malware Protection Engine PDF File Parsing Remote Code Execution

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2012 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use