BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Filter: view all
microsoft

Microsoft Word 2010 Memory Corruption

Disclosed March 24, 2014    Fully Patched
Vendors: Microsoft
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
kaspersky

Kaspersky RegExp Remote Denial of Service Vulnerability

Disclosed March 18, 2014    Zeroday : 250 days
Vendors: Kaspersky
Vulnerability Severity: Low
Exploit Impact: Denial of Service
Exploit Availability: Publicly Available
redhat

oVirt 3.4 Session Fixation and CSRF Vulnerabilities

Disclosed March 17, 2014
Vendors: Red Hat
Vulnerability Severity: Medium
Exploit Impact: Session Hijacking
Exploit Availability:
xnsoft

XnView JXR IFD_ENTRY Processing Integer Overflow Vulnerability

Disclosed March 13, 2014    Zeroday : 255 days
Vendors: XnSoft
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
claws

Claws Mail Plugins Certificate Verification Vulnerabilities

Disclosed March 11, 2014    Zeroday : 257 days
Vendors: Claws
Vulnerability Severity: Medium
Exploit Impact: Security Bypass
Exploit Availability: No Exploit Available
vmware

VMware ESXi NTP Denial of Service Vulnerability

Disclosed March 11, 2014    Zeroday : 257 days
Vendors: VMware
Vulnerability Severity: Low
Exploit Impact: Denial of Service
Exploit Availability: Publicly Available
luxoft

LuxCal 3.2.2 Cross Site Request Forgery / SQL Injection

Disclosed March 10, 2014    Zeroday : 258 days
Vendors: LuxSoft
Vulnerability Severity: Medium
Exploit Impact: SQL Injection
Exploit Availability: No Exploit Available
fitnesse

FitNesse Arbitrary Command Execution Vulnerability

Disclosed February 25, 2014    Zeroday : 271 days
Vendors: FitNesse
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
belkin

WRT120N fprintf Stack Overflow

Disclosed February 19, 2014    Zeroday : 277 days
Vendors: Belkin (Linksys)
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
microsoft

IE10 Use-After-Free 0day

Disclosed February 13, 2014    Fully Patched
Vendors: Microsoft
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: