Advisories

Security advisories of original bugs and vulnerabilities found by Matousec – Transparent security are supplements of our research and testing activities. We alert users of the vulnerable security software, track vendors' responses and spread the information about our findings to well known information sources.

Our latest advisories:

• 2007-09-18.01 Plague in (security) software drivers
• 2007-06-15.01 Kaspersky Multiple insufficient argument validation of hooked SSDT functions Vulnerability
• 2007-06-01.01 Outpost Enforcing system reboot with 'outpost_ipc_hdr' mutex Vulnerability
• 2007-05-15.01 Bypassing PFW/HIPS open process control with uncommon identifier
• 2007-05-01.01 ZoneAlarm Insufficient validation of 'vsdatant' driver input buffer Vulnerability
• 2007-04-15.01 ZoneAlarm Multiple insufficient argument validation of hooked SSDT functions Vulnerability
• 2007-04-01.01 Norton Multiple insufficient argument validation of hooked SSDT functions Vulnerability
• 2007-03-15.01 Norton Insufficient validation of 'SymTDI' driver input buffer Vulnerability
• 2007-03-01.01 Comodo Bypassing settings protection using magic pipe Vulnerability
• 2007-02-15.01 Comodo DLL injection via weak hash function exploitation Vulnerability
• 2007-02-01.01 Comodo Multiple insufficient argument validation of hooked SSDT functions Vulnerability
• 2007-01-15.01 Outpost Bypassing Self-Protection using file links Vulnerability
• 2007-01-01.01 Kerio Fake 'iphlpapi' DLL injection Vulnerability
• 2006-12-15.01 Bypassing process identification of several personal firewalls and HIPS
• 2006-12-01.01 Outpost Bypassing Self-Protection via Advanced DLL injection with handle stealing Vulnerability
• 2006-11-15.01 Outpost Multiple insufficient argument validation of hooked SSDT functions Vulnerability
• 2006-11-01.01 Outpost Insufficient validation of 'SandBox' driver input buffer Vulnerability
• 2006-10-15.01 BlackICE Filelock protection bypass Vulnerability
• 2006-10-01.01 Kerio Multiple insufficient argument validation of hooked SSDT functions Vulnerability
• 2006-09-15.01 Norton Insufficient validation of 'SymEvent' driver input buffer Vulnerability
• 2006-09-01.01 BlackICE Insufficient validation of arguments of NtOpenSection Vulnerability
• 2006-08-15.01 Norton DLL faking via 'SuiteOwners' protection bypass Vulnerability
• 2006-08-01.01 BlackICE DLL faking of run-time linked libraries Vulnerability
• 2006-07-15.02 Norton Insufficient protection of Norton service registry keys Vulnerability
• 2006-07-15.01 Kerio Terminating 'kpf4ss.exe' using internal runtime error Vulnerability
• 2006-07-01.01 ZoneAlarm Insufficient protection of registry key 'VETFDDNT\Enum' Vulnerability

valid HTML 4.01 · valid CSS 2 · optimized for you · design by martina · powered by jan · generated on November 21, 2008