Search

Traffic File Update - January 2010

This Traffic IQ Professional update for January 2010 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for January 2010

42 Application Exploits

Adobe Flash Player SWF File Denial of Service Vulnerability S
Adobe Reader and Acrobat 'newplayer()' Remote Code Execution (gen_shell_bind_tcp) S
Adobe Reader and Acrobat 'newplayer()' Remote Code Execution (gen_shell_reverse_tcp) S
Adobe Reader and Acrobat 'newplayer()' Remote Code Execution (win_exec) S
Adobe Reader and Acrobat 'newplayer()' Remote Code Execution (win_shell_reverse_ord_tcp) S
Adobe Reader and Acrobat 'newplayer()' Remote Code Execution Vulnerability S
AtomixMP3 Malformed M3U File Buffer Overflow Vulnerability S
AtomixMP3 Malformed PLS Playlist File Buffer Overflow Vulnerability S
BigAnt IM Server 'USV' Request Buffer Overflow Vulnerability S
BS.Player BSI File 'Skin' Field Processing Buffer Overflow Vulnerability S
BS.Player BSI File 'Skin' Field Processing Buffer Overflow Vulnerability_1 S
FTP WarFTP Username Remote Buffer Overflow (generic_shell_bind_tcp) S
FTP WarFTP Username Remote Buffer Overflow (win_exec) S
FTP WarFTP Username Remote Buffer Overflow (win_shell_reverse_ord_tcp) S
FTP WarFTP Username Remote Buffer Overflow (win_shell_reverse_tcp) S
Google SketchUp 3DS File Remote Memory Corruption Vulnerability S
HP OpenView NNM 'ovalarm.exe' Remote Buffer Overflow Vulnerability (win2k3) S
HTTP AOL 9.5 Phobos.Playlist Import() Buffer Overflow (gen_shell_bind_tcp) S
HTTP AOL 9.5 Phobos.Playlist Import() Buffer Overflow (win_exec) S
HTTP AOL 9.5 Phobos.Playlist Import() Buffer Overflow (win_shell_reverse_http) S
HTTP AOL 9.5 Phobos.Playlist Import() Buffer Overflow (win_shell_reverse_ord_tcp) S
HTTP AOL 9.5 Phobos.Playlist Import() Buffer Overflow (win_shell_reverse_tcp) S
HTTP AOL 9.5 Phobos.Playlist Import() Buffer Overflow Vulnerability S
HTTP EFS Software Authentication Request Remote Buffer Overflow S
HTTP EFS Software Authentication Request Remote Buffer Overflow_1 S
HTTP Mozilla Firefox Floating Point Conversion Heap Overflow Vulnerability S
HTTP Ruby WEBrick Terminal Escape Sequences Vulnerability S
HTTP Sun Java System Web Server 'TRACE' Buffer Overflow Vulnerability S
HTTP Windows Live Messenger 'ViewProfile()' Buffer Overflow Vulnerability S
iTunes Malformed '.mov' File Buffer Overflow Vulnerability S
Lotus Domino LDAP Message Remote Denial of Service Vulnerability S
MediaPlayerClassic Malformed '.mov' File Buffer Overflow Vulnerability S
Microsoft IE 'Aurora' Remote Code Execution Vulnerability (win_exec) S
Microsoft IE 'Aurora' Remote Code Execution Vulnerability (win_shell_bind_tcp) S
Microsoft IE 'screen' Remote Denial of Service Vulnerability S
Microsoft IE Null Pointer Dereference Vulnerabilities S
Microsoft IE Null Pointer Dereference Vulnerabilities_1 S
Novell eDirectory 8.7.3 Denial of Service Vulnerability S
OpenOffice '.csv' File Remote Denial of Service Vulnerability S
Oracle Internet Directory 'oidldapd' Remote Memory Corruption Vulnerability S
QuickTime Malformed '.mov' File Buffer Overflow Vulnerability S
TurboFTP 'DELE' FTP Command Remote Buffer Overflow Vulnerability S

5 Evasions

Evasion HTML base64 (double_pad) (for CVE-2009-4324) S
Evasion HTML javascript escape (for CVE-2009-4324) S
Evasion HTML unicode (utf-16le) (for CVE-2009-4324) S
Evasion HTTP chunked (for CVE-2009-4324) S
Evasion HTTP junk headers (for CVE-2009-4324) S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.