Security Advisories

2013
n.runs-SA-2013.005-Lotus_Notes_Java_Applets
n.runs-SA-2013.001-Polycom_Command_Shell
n.runs-SA-2013.002-Polycom_Command_Injection
n.runs-SA-2013.003-Polycom_H323_SQL_Injection
n.runs-SA-2013.004-Polycom_H323_Format_String_Bug

2012
n.runs-SA-2012.001 - RequestTracker Command Injection VERP sendmail
n.runs-SA-2012.002 - RequestTracker Code Injection shredder
n.runs-SA-2012.003 - SPLUNK DoS HashDOS
n.runs-SA-2012.004 - SPLUNK Unauthenticated remote DoS

2011
n.runs-SA-2011.001 - Citrix XenApp  XenDesktop Stack-Based Buffer Overflow'
n.runs-SA-2011.002 - Citrix XenApp  XenDesktop XML Service Heap Corruption
n.runs-SA-2011.004 - web programming languages and platforms - DoS through hash table

2010
n.runs-SA-2010.001 - Alcatel-Lucent - unauthenticated administrative access to CTI CCA Server
n.runs-SA-2010.002 - Alcatel-Lucent - arbitrary code execution on OmniVista 4760
n.runs-SA-2010.003 - Hewlett Packard LaserJet MFP devices - Directory Traversal in PJL interface

2009
n.runs-SA-2009.001 - OS X CFNetwork advisory
n.runs-SA-2009.005 - Apple Safari - Information disclosure
n.runs-SA-2009.006 - Apple Safari - Null pointer dereference
n.runs-SA-2009.007 - Adobe Acrobat - Invalid pointer write could lead to arbitrary code execution

2008
ERRATA - n.runs-SA-2008.001 - Jscape Secure FTP Applet
n.runs-SA-2008.002 - F-Prot Out-of-Bound Memory Access DoS (remote)
n.runs-SA-2008.003 - Quicktime - Arbitrary Code Execution (remote)
n.runs-SA-2008.004 - AVG Anti-Virus Divide by Zero - DoS (remote)
n.runs-SA-2008.005 - MacOS - XCoreServices Framework's CarbonCore Framework Arbitrary Code Execution (remote)
n.runs-SA-2008.006 - Horde Cross-Site Scripting in filename MIME attachments
n.runs-SA-2008.007 - Cross-Site Scripting Filter Evasion in various frameworks
n.runs-SA-2008.008
n.runs-SA-2008.009
n.runs-SA-2008.010 - Opera - HTML parsing Code Execution Advisory

2007
[n.runs-SA-2007.001] - aruba_advisory_draft_unauth_access_ms
[n.runs-SA-2007.002] - aruba_advisory_draft_buffer_overflow_ms
[n.runs-SA-2007.003]
[n.runs-SA-2007.004]
[n.runs-SA-2007.005]
[n.runs-SA-2007.006]
[n.runs-SA-2007.007]
[n.runs-SA-2007.008] - Avast! Antivirus CAB parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.009] - Avast! Antivirus SIS parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.010] - Avira Antivir Antivirus LZH parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.011] - Avira Antivir Antivirus UPX parsing Divide by Zero Advisory
[n.runs-SA-2007.012] - Avira Antivir Antivirus TAR parsing Infinite Loop Advisory
[n.runs-SA-2007.013] - F-Secure Antivirus LZH parsing BufferOverflow Advisory
[n.runs-SA-2007.014] - F-Secure Antivirus ARJ parsing Infinite Loop Advisory
[n.runs-SA-2007.015] - F-Secure Antivirus FSG packed files parsing Infinite Loop Advisory
[n.runs-SA-2007.016] - NOD32 Antivirus CAB parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.017] - NOD32 Antivirus ASPACK parsing Infinite Loop Advisory
[n.runs-SA-2007.018] - NOD32 Antivirus ASPACK and FSG parsing Divide by Zero Advisory
[n.runs-SA-2007.019] - Panda Antivirus EXE parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.020] - Norman Antivirus ACE parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.021] - Norman Antivirus LZH parsing Arbitrary Code Execution Advisory
[n.runs-SA-2007.022] - Norman Antivirus DOC parsing Detection Bypass Advisory
[n.runs-SA-2007.023] - Norman Antivirus DOC parsing Divide by Zero Advisory
[n.runs-SA-2007.024] - CA eTrust Antivirus Infinite Loop DoS Advisory
[n.runs-SA-2007.025] - ClamAV Remote Code Execution Advisory
[n.runs-SA-2007.026] - Sophos Antivirus BZip parsing Infinite Loop Advisory
[n.runs-SA-2007.027] - Sophos Antivirus UPX parsing Arbitrary CodeExecution Advisory

2006
Asbru HardCore Web Content Editor - Command Injection
AVG Anti-Virus - Arbitrary Code Execution (remote)
BitDefender AV Packed PE File Parsing Engine Heap Overflow
NOD32 Antivirus CAB parsing Arbitrary Code Execution Advisory
NOD32 Antivirus DOC parsing Arbitrary Code Execution Advisory


Vor 2006

n.runs-SA-2005.001
n.runs-SA-2003.001

© n.runs professionals GmbH

fon: +49 (0) 6171 / 699-0
fax: +49 (0) 6171 / 699-199
contact(at)nruns.com

website relaunch by attentio