Sans Vulnerabilities List: Q1 2005

by David Sudjiman ~ May 4th, 2005. Filed under: Tech.

First look at the summary of Sans Vulns list: Q1 2005 (SVL:Q1-05), is not very surprising to have MS to fill up the list.

Top New Vulnerabilities in Q1, 2005 (Summary List)

Microsoft Products

* Windows License Logging Service Overflow (MS05-010)
* Microsoft Server Message Block(SMB) Vulnerability (MS05-011)
* Internet Explorer Vulnerabilities (MS05-014 and MS05-008)
* Microsoft HTML Help ActiveX Control Vulnerability (MS05-001)
* Microsoft DHTML Edit ActiveX Remote Code Execution (MS05-013)
* Microsoft Cursor and Icon Handling Overflow (MS05-002)
* Microsoft PNG File Processing Vulnerabilities (MS05-009)

Computer Associates License Manager Buffer Overflows
DNS Cache Poisoning Vulnerability
Multiple Antivirus Products Buffer Overflow Vulnerabilities
Oracle Critical Patch Update
Multiple Media Player Buffer Overflows (RealPlayer, Winamp and iTunes)

« OMG, MS software on car.
Debian Sarge Freeze is now official »

Leave a Reply