Creditee: Peter Vreugdenhil

Known Contact Information:

  • (as of 2005-08-09)
  • (as of 2006-02-23)
  • (as of 2007-12-11)

Known Affiliations:

Disclosed Vulnerabilities (49):

Disc. DateOSVDB IDCVEIDTitle
2012-04-10 81246 2012-0774 Adobe Reader / Acrobat True Type Font Control Value Table Stream MINDIX opcode PDF File Handling Remote Overflow
2011-02-08 71390 2011-0590 Adobe Reader / Acrobat 3D U3D Texture iff RLE Decompression Overflow
2011-02-08 71389 2011-0591 Adobe Reader / Acrobat 3D U3D Texture rgba RLE Decompression Overflow
2011-02-08 71388 2011-0592 Adobe Reader / Acrobat 3D U3D Texture bmp RLE Decompression Overflow
2011-02-08 71387 2011-0593 Adobe Reader / Acrobat 3D U3D Texture psd RLE Decompression Overflow
2011-02-08 71385 2011-0595 Adobe Reader / Acrobat U3D Texture fli RLE Decompression Overflow
2011-02-08 71384 2011-0596 Adobe Reader / Acrobat 2d.dll BMP RLE_8 Decompression Overflow
2011-02-08 71382 2011-0599 Adobe Reader / Acrobat 4/8-bit RLE Compressed BMP ColorData Parsing Overflow
2011-02-08 72501 2011-0590 Adobe Reader / Acrobat U3D Texture Parser ILBM Handling Overflow
2011-01-11 70444 2011-0027 Microsoft Data Access Components (MDAC / WDAC) MSADO Record CacheSize Handling Remote Code Execution
2010-12-14 69829 2010-3346 Microsoft IE HTML+Time Element outerText Memory Corruption
2010-10-12 68541 2010-3328 Microsoft IE mshtml.dll CAttrArray::PrivateFind Function Object Handling Memory Corruption
2010-06-08 65212 2010-1262 Microsoft IE CStyleSheet Object Handling Memory Corruption
2010-03-31 63493 2010-0842 Oracle Java SE / Java for Business Sound MIDI File MixerSequencer Object GM_Song Structure Handling Overflow
2010-03-30 63492 2010-0843 Oracle Java SE / Java for Business com.sun.media.sound Library Unspecified Function Remote Code Execution
2010-03-30 63495 2010-0844 Oracle Java SE / Java for Business MIDI Stream MixerSequencer Object metaEvent Handling Remote Code Execution
2010-01-21 61914 2010-0248 Microsoft IE Javascript Cloned DOM Object Handling Memory Corruption
2010-01-19 61970 2009-4246 RealNetworks Multiple Products RJS Skin File Handling Overflow
2009-11-03 59709 2009-3871
2010-0079
Sun Java JDK / JRE AWT setBytePixels Library Function Overflow
2009-11-03 59710 2009-3869
2010-0079
Sun Java JDK / JRE AWT setDifflCM Library Function Overflow
2009-08-11 56914 2009-0562 Microsoft Office Web Components OWC10 ActiveX Loading/Unloading Memory Allocation Arbitrary Code Execution
2009-08-11 56915 2009-2496 Microsoft Office Web Components OWC10.Spreadsheet ActiveX BorderAround() Method Heap Corruption Arbitrary Code Execution
2009-07-28 56693 2009-1917 Microsoft IE timeChildren Object ondatasetcomplete Event Method Memory Corruption
2009-07-28 56695 2009-1919 Microsoft IE HTML Embedded CSS Property Modification Memory Corruption
2009-07-13 55806 2009-1136 Microsoft Office Web Components OWC10.Spreadsheet ActiveX msDataSourceObject() Method Memory Corruption
2008-11-05 49520 2008-2992 Adobe Reader / Acrobat util.printf() Function Crafted PDF File Handling Overflow
2008-11-04 50246 2008-4813 Adobe Acrobat PDF File Multiple Object Handling Memory Corruption
2008-11-04 50639 2008-5364 NOS Microsystems getPlus Download Manager getPlus ActiveX (gp.ocx) Overflow
2008-06-10 46083 2008-1442 Microsoft IE HTML Object Handling Memory Corruption Arbitrary Code Execution
2008-04-30 44882 2007-6339 Akamai Download Manager ActiveX (DownloadManagerV2.ocx) Undocumented Object Parameters Arbitrary Code Execution
2008-04-03 44033 2008-0312 Symantec Norton Internet Security AutoFix Support Tool ActiveX (SymAData.dll) GetEventLogInfo Method Overflow
2008-03-10 42946 2008-1309 RealPlayer ActiveX (rmoc3260.dll) Console Property Memory Corruption Arbitrary Code Execution
2007-12-11 39118 2007-3902 Microsoft IE Object setExpression Function Memory Corruption
2007-12-11 39120 2007-5344 Microsoft IE Element Tag Uninitialized Memory Corruption
2007-06-12 37236 2007-3208 YaBB register.pl CRLF Injection Privilege Escalation
2007-06-12 37237 2007-3208 YaBB profile.pl CRLF Injection Privilege Escalation
2007-05-09 35075 2006-3456 Symantec Multiple Products NAVOpts.dll ActiveX Arbitrary Code Execution
2007-05-08 35874 2007-2584 McAfee SecurityCenter McSubMgr.McSubMgr Subscription Manager ActiveX (MCSUBMGR.DLL) IsOldAppInstalled Function Overflow
2007-04-19 34327 2007-0443 Gracenote CDDBControl ActiveX Proxy Configuration Parameters Multiple Overflows
2007-04-05 33850 2007-1112 Kaspersky Multiple Products AXKLSYSINFOLib.SysInfo ActiveX Multiple Method Arbitrary File Manipulation
2007-04-04 34328 2007-1879 Kaspersky Multiple Products KL.SysInfo ActiveX (AxKLSysInfo.dll) StartUploading Function Arbitrary File Access
2007-04-03 34319 2007-1680 Yahoo! Messenger AudioConf ActiveX (yacscom.dll) Multiple Property Overflow
2007-02-23 33481 2006-6490 SupportSoft SmartIssue (tgctlsi.dll) ActiveX Overflow
2007-02-22 33482 2006-6490 SupportSoft ScriptRunner (tgctlsr.dll) ActiveX Overflow
2006-11-06 30220 2006-5650 ICQ ICQPhone.SipxPhoneManager ActiveX DownloadAgent Function Arbitrary Code Execution
2006-06-27 26874 2006-3134
2006-6442
Gracenote CDDBControl ActiveX Control Option String Overflow
2006-02-23 23461 2005-3525 Macromedia ShockWave Player ActiveX Installer Overflow
2005-12-20 22003 2005-3657 McAfee SecurityCenter mcinsctl.dll McLog Object Arbitrary File Creation
2005-08-09 18696 2005-1527 AWStats ShowInfoURL Arbitrary Perl Code Execution

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use