OSVDB: The Open Source Vulnerability Database

Creditee: Peter Vreugdenhil

Known Contact Information:

(as of 2005-08-09)
(as of 2006-02-23)
(as of 2007-12-11)

Known Affiliations:

iDefense Labs VCP (as of 2005-08-09)
Zero Day Initiative (ZDI) (as of 2006-02-23)

Disclosed Vulnerabilities (47):

Disc. Date	OSVDB ID	CVEID	Title
2011-02-08	71390	2011-0590	Adobe Reader / Acrobat 3D U3D Texture iff RLE Decompression Overflow
2011-02-08	71389	2011-0591	Adobe Reader / Acrobat 3D U3D Texture rgba RLE Decompression Overflow
2011-02-08	71388	2011-0592	Adobe Reader / Acrobat 3D U3D Texture bmp RLE Decompression Overflow
2011-02-08	71387	2011-0593	Adobe Reader / Acrobat 3D U3D Texture psd RLE Decompression Overflow
2011-02-08	71385	2011-0595	Adobe Reader / Acrobat U3D Texture fli RLE Decompression Overflow
2011-02-08	71384	2011-0596	Adobe Reader / Acrobat 2d.dll BMP RLE_8 Decompression Overflow
2011-02-08	71382	2011-0599	Adobe Reader / Acrobat 4/8-bit RLE Compressed BMP ColorData Parsing Overflow
2011-02-08	72501	2011-0590	Adobe Reader / Acrobat U3D Texture Parser ILBM Handling Overflow
2011-01-11	70444	2011-0027	Microsoft Data Access Components (MDAC / WDAC) MSADO Record CacheSize Handling Remote Code Execution
2010-12-14	69829	2010-3346	Microsoft IE HTML+Time Element outerText Memory Corruption
2010-10-12	68541	2010-3328	Microsoft IE mshtml.dll CAttrArray::PrivateFind Function Object Handling Memory Corruption
2010-06-08	65212	2010-1262	Microsoft IE CStyleSheet Object Handling Memory Corruption
2010-03-30	63493	2010-0842	Oracle Java SE / Java for Business Sound MIDI File MixerSequencer Object GM_Song Structure Handling Overflow
2010-03-30	63492	2010-0843	Oracle Java SE / Java for Business com.sun.media.sound Library Unspecified Function Remote Code Execution
2010-03-30	63495	2010-0844	Oracle Java SE / Java for Business MIDI Stream MixerSequencer Object metaEvent Handling Remote Code Execution
2010-01-21	61914	2010-0248	Microsoft IE Javascript Cloned DOM Object Handling Memory Corruption
2010-01-19	61970	2009-4246	RealNetworks Multiple Products RJS Skin File Handling Overflow
2009-11-03	59709	2009-3871 2010-0079	Sun Java JDK / JRE AWT setBytePixels Library Function Overflow
2009-11-03	59710	2009-3869 2010-0079	Sun Java JDK / JRE AWT setDifflCM Library Function Overflow
2009-08-11	56914	2009-0562	Microsoft Office Web Components OWC10 ActiveX Loading/Unloading Memory Allocation Arbitrary Code Execution
2009-08-11	56915	2009-2496	Microsoft Office Web Components OWC10.Spreadsheet ActiveX BorderAround() Method Heap Corruption Arbitrary Code Execution
2009-07-28	56693	2009-1917	Microsoft IE timeChildren Object ondatasetcomplete Event Method Memory Corruption
2009-07-28	56695	2009-1919	Microsoft IE HTML Embedded CSS Property Modification Memory Corruption
2009-07-13	55806	2009-1136	Microsoft Office Web Components OWC10.Spreadsheet ActiveX msDataSourceObject() Method Memory Corruption
2008-11-04	50246	2008-4813	Adobe Acrobat PDF File Multiple Object Handling Memory Corruption
2008-11-04	50639	2008-5364	NOS Microsystems getPlus Download Manager getPlus ActiveX (gp.ocx) Overflow
2008-06-10	46083	2008-1442	Microsoft IE HTML Object Handling Memory Corruption Arbitrary Code Execution
2008-04-30	44882	2007-6339	Akamai Download Manager ActiveX (DownloadManagerV2.ocx) Undocumented Object Parameters Arbitrary Code Execution
2008-04-03	44033	2008-0312	Symantec Norton Internet Security AutoFix Support Tool ActiveX (SymAData.dll) GetEventLogInfo Method Overflow
2008-03-10	42946	2008-1309	RealPlayer ActiveX (rmoc3260.dll) Console Property Memory Corruption Arbitrary Code Execution
2007-12-11	39118	2007-3902	Microsoft IE Object setExpression Function Memory Corruption
2007-12-11	39120	2007-5344	Microsoft IE Element Tag Uninitialized Memory Corruption
2007-06-12	37236	2007-3208	YaBB register.pl CRLF Injection Privilege Escalation
2007-06-12	37237	2007-3208	YaBB profile.pl CRLF Injection Privilege Escalation
2007-05-09	35075	2006-3456	Symantec Multiple Products NAVOpts.dll ActiveX Arbitrary Code Execution
2007-05-08	35874	2007-2584	McAfee SecurityCenter McSubMgr.McSubMgr Subscription Manager ActiveX (MCSUBMGR.DLL) IsOldAppInstalled Function Overflow
2007-04-19	34327	2007-0443	Gracenote CDDBControl ActiveX Proxy Configuration Parameters Multiple Overflows
2007-04-05	33850	2007-1112	Kaspersky Multiple Products AXKLSYSINFOLib.SysInfo ActiveX Multiple Method Arbitrary File Manipulation
2007-04-04	34328	2007-1879	Kaspersky Multiple Products KL.SysInfo ActiveX (AxKLSysInfo.dll) StartUploading Function Arbitrary File Access
2007-04-03	34319	2007-1680	Yahoo! Messenger AudioConf ActiveX (yacscom.dll) Multiple Property Overflow
2007-02-23	33481	2006-6490	SupportSoft SmartIssue (tgctlsi.dll) ActiveX Overflow
2007-02-22	33482	2006-6490	SupportSoft ScriptRunner (tgctlsr.dll) ActiveX Overflow
2006-11-06	30220	2006-5650	ICQ ICQPhone.SipxPhoneManager ActiveX DownloadAgent Function Arbitrary Code Execution
2006-06-27	26874	2006-3134 2006-6442	Gracenote CDDBControl ActiveX Control Option String Overflow
2006-02-23	23461	2005-3525	Macromedia ShockWave Player ActiveX Installer Overflow
2005-12-20	22003	2005-3657	McAfee SecurityCenter mcinsctl.dll McLog Object Arbitrary File Creation
2005-08-09	18696	2005-1527	AWStats ShowInfoURL Arbitrary Perl Code Execution

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.