Search

Traffic File Update - October 2008

This Traffic IQ Professional update for October 2008 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for October 2008

48 Application Exploits

Acoustica Mixcraft '.mx4' Image File Buffer Overflow Vulnerability S
Autodesk Design Review DWF Viewer File Creation Vulnerability S
FastStone Image Viewer Multiple BMP Image Handling Memory Corruption S
FastStone Image Viewer Multiple BMP Image Handling Memory Corruption_1 S
FastStone Image Viewer Multiple BMP Image Handling Memory Corruption_2 S
FastStone Image Viewer Multiple BMP Image Handling Memory Corruption_3 S
FTP GuildFTPd 'CWD' and 'LIST' Command Heap Overflow Vulnerability S
FTP XM Easy Personal FTP Server 'NSLT' Remote Denial of Service S
HTTP Apache Tomcat 'UTF-8' Remote Directory Traversal Vulnerability_1 S
HTTP Apache Tomcat 'UTF-8' Remote Directory Traversal Vulnerability_2 S
HTTP AyeView GIF Image Handling Denial of Service Vulnerability S
HTTP Epic Games Unreal Tournament 3 UT3 WebAdmin Directory Traversal S
HTTP GdPicture 'SaveAsPDF()' File Creation Vulnerability S
HTTP Hummingbird HostExplorer 'PlainTextPassword()' Buffer Overflow S
HTTP HyperStop WebHost Directory Database Disclosure Vulnerability S
HTTP NMS DVD Burning SDK 'NMSDVDX.dll' Arbitrary File Overwrite S
HTTP Nokia Web Browser for S60 Infinite Array Sort Denial of Service S
HTTP Opera Command Execution and Cross-Site Scripting S
HTTP Skype Toolbars Extension for Firefox Clipboard Security Weakness S
HTTP Ultra Office 'Save()' Method Arbitrary File Overwrite Vulnerability S
HTTP Ultra Office Control 'HttpUpload()' Method Buffer Overflow Vulnerability S
HTTP VeriSign Kontiki DMS 'action' Parameter Cross Site Scripting S
Hummingbird Deployment Wizard Insecure Method (SetRegistryValueAsString) S
Hummingbird Deployment Wizard Insecure Methods Vulnerabilities (PerformUpdateAsync) S
Hummingbird Deployment Wizard Insecure Methods Vulnerabilities (Run) S
Microsoft Outlook Web Access for Exchange 'redir.asp' URI Redirection S
Microsoft PicturePusher 'PipPPush.dll' Arbitrary File Download Vulnerability S
Microsoft Windows GDI+ GIF Parsing Code Execution Vulnerability (MS08-052) S
Microsoft Windows Media Encoder Buffer Overrun Vulnerability (MS08-053) S
Microsoft WordPad '.doc' File Remote Denial of Service S
Mozilla Firefox '.url' Shortcut Processing Vulnerability S
POP3 NoticeWare Email Server NG 'PASS' Command Remote DoS S
Quick TFTP Pro Transfer-Mode Overflow (Win2k_generic_shell_reverse_tcp) S
Quick TFTP Pro Transfer-Mode Overflow (Win2k_win_exec) S
Quick TFTP Pro Transfer-Mode Overflow (Win2k_win_exec_bind_tcp) S
Quick TFTP Pro Transfer-Mode Overflow (WinXP_SP2_win_exec) S
Quick TFTP Pro Transfer-Mode Overflow (WinXP_SP2_win_shell_bind_tcp) S
RaidenFTPD Directory Name Buffer Overflow Vulnerability S
TFTP Quick Tftp Server Pro 'mode' Buffer Overflow Vulnerability S
Vba32 Personal Antivirus Archive Parsing Denial of Service S
VLC Media Player TY File Stack Overflow Vulnerability (WinXP SP1) S
VLC Media Player TY File Stack Overflow Vulnerability (WinXP SP2) S
VLC Media Player XSPF Playlist Memory Corruption Vulnerability S
Win FTP Server 'LSTR' Command Remote Denial Of Service Vulnerability S
Windows Media Encoder Buffer Overrun MS08-053 (generic_shell_reverse_tcp) S
Windows Media Encoder Buffer Overrun MS08-053 (Win_exec) S
Windows Media Encoder Buffer Overrun MS08-053 (Win_shell_bind_tcp) S
Windows Media Encoder Buffer Overrun MS08-053 (Win_shell_reverse_ord_tcp) S

1 Evasions

Evasion Windows Media Encoder Buffer Overrun MS08-053 (HTML Javascript Escape) S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.