ZDI names and shames security vulnerabilities from Microsoft, IBM, HP and Novell
Six months ago, the Zero Day Initiative (ZDI) announced that it would no longer tolerate vendors taking a long time to fix security flaws in their products and would release information on vulnerabilities after a maximum of 180 days. They've now lived up to their promise and released information on 22 long-running security problems.
ZDI rewards security experts for finding security vulnerabilities so it can be the first to utilise the information. It also takes responsibility for informing vendors of vulnerabilities so it can, where possible, publish information on fixing them, in concert with the vendor. However, vendors have been known to take over a year to produce a patch and consent to publication. Because this extended delay represents an unnecessary risk for users, ZDI announced that it would, in future make, information on vulnerabilities public after a maximum of 180 days.
The 22 security vulnerabilities it has now disclosed relate to products from Microsoft, IBM, Novell, CA, EMC and even ZDI's parent company HP. Affected products include Lotus Notes, PowerPoint and Excel. These vulnerabilities are definitely be taken seriously, as ZDI usually carries out careful checks to ensure that the problems described are genuine security issues. To receive the full reward, discoverers of vulnerabilities are usually required to supply a demo exploit. The vulnerabilities in the published list even include issues scoring the maximum 10 points on the Common Vulnerability Scoring System (CVSS) scale.
ZDI published advisories:
- ZDI-11-061 Replication Manager Client irccd.exe Remote Code Execution Vulnerability
- ZDI-11-060 Novell eDirectory Malformed NCP Request Denial of Service Vulnerability
- ZDI-11-059 CA ETrust Secure Content Manager Common Services Transport Remote Code Execution Vulnerability
- ZDI-11-058 SCO Openserver IMAP Daemon Long Verb Parsing Remote Code Execution Vulnerability
- ZDI-11-057 Hewlett-Packard Data Protector Cell Manager Service Authentication Bypass Vulnerability
- ZDI-11-056 Hewlett-Packard Data Protector Client EXEC_SETUP Remote Code Execution Vulnerability
- ZDI-11-055 Hewlett-Packard Data Protector Client EXEC_CMD Perl Remote Code Execution Vulnerability
- ZDI-11-054 Hewlett-Packard Data Protector Client EXEC_CMD omni_chk_ds.sh Remote Code Execution Vulnerability
- ZDI-11-053 Lotus Domino Server diiop getEnvironmentString Remote Code Execution Vulnerability
- ZDI-11-052 Lotus Domino Server diiop Client Request Operation Remote Code Execution Vulnerability
- ZDI-11-051 IBM Lotus Notes cai URI Handler Remote Code Execution Vulnerability
- ZDI-11-050 IBM Informix Dynamic Server SET ENVIRONMENT Remote Code Execution Vulnerability
- ZDI-11-049 IBM Lotus Domino SMTP Multiple Filename Arguments Remote Code Execution Vulnerability
- ZDI-11-048 IBM Lotus Domino iCalendar Meeting Request Parsing Remote Code Execution Vulnerability
- ZDI-11-047 IBM Lotus Domino LDAP Bind Request Remote Code Execution Vulnerability
- ZDI-11-046 IBM Lotus Domino Calendar Request Attachment Name Parsing Remote Code Execution Vulnerability
- ZDI-11-045 IBM Lotus Domino IMAP/POP3 Non-Printable Character Expansion Remote Code Execution Vulnerability
- ZDI-11-044 Microsoft PowerPoint 2007 OfficeArt Atom Remote Code Execution Vulnerability
- ZDI-11-043 Microsoft Excel 2007 Office Drawing Layer Remote Code Execution Vulnerability
- ZDI-11-042 Microsoft Office Excel Axis Properties Record Parsing Remote Code Execution Vulnerability
- ZDI-11-041 Microsoft Office Excel Office Art Object Parsing Remote Code Execution Vulnerability
- ZDI-11-040 Microsoft Office Excel 2003 Invalid Object Type Remote Code Execution Vulnerability
(crve)