Protect Your Assets
Showing results for 
Search instead for 
Do you mean 

Did you know: HP TippingPoint offers Zero-Day coverage to our customers

MarthaAviles ‎03-27-2014 09:34 AM - edited ‎09-25-2015 08:26 AM

Did you know our DVLabs team creates about 20 filters a week? And that we’ve had 90 released filters since the start of 2014? If you do the math, that’s 90 in 3 months! Typically, 1 in 12 filters released are zero-day, and if you want to look at the latest, check out our ZDI site for the latest upcoming advisories.

 

We have been leading the pack for quite a while and have won the Frost & Sullivan Company of the Year Award for Vulnerability Research for 4 consecutive years!

 

Just in the month of March thus far, we’ve released all of these zero-day filters below.

 

Vendor: Adobe

  • 13735: Pwn2Own: ZDI-CAN-2210

  • 13738: Pwn2Own: ZDI-CAN-2216

  • 13748: Pwn2Own: ZDI-CAN-2235

     

Vendor: Alienvault

  • 13723: ZDI-CAN-2181

  • 13731: ZDI-CAN-2182

     

Vendor: Apple

  • 13734: Pwn2Own: ZDI-CAN-2206

  • 13742: Pwn2Own: ZDI-CAN-2221

     

Vendor: Attachmate

  • 13717: ZDI-CAN-2106

  • 13732: ZDI-CAN-2075

     

Vendor: EMC

  • 13688: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-279)

  • 13690: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-282)

  • 13691: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-280)

  • 13703: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-281, ZDI-13-283)

     

Vendor: Google

  • 13737: Pwn2Own: ZDI-CAN-2214

  • 13746: Pwn2Own: ZDI-CAN-2229

  • 13747: Pwn2Own: ZDI-CAN-2233

     

Vendor: HP

  • 13649: ZDI-CAN-2083

  • 13650: ZDI-CAN-2140

  • 13678: ZDI-CAN-2104

  • 13680: ZDI-CAN-2153,2170

  • 13681: ZDI-CAN-2078,2173-2179

  • 13733: ZDI-CAN-2083

     

Vendor: IBM

  • 13668: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-284)

  • 13669: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-285)

  • 13673: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-284)

  • 13674: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-285)

     

Vendor: Microsoft

  • 13651: ZDI-CAN-2159

  • 13652: HTTP: Microsoft Office OOXML Vanish Tag Use-After-Free Vulnerability (ZDI-11-347)

  • 13653: ZDI-CAN-2166

  • 13718: ZDI-CAN-2169

  • 13724: ZDI-CAN-2099

  • 13725: ZDI-CAN-2156

  • 13726: ZDI-CAN-2166

  • 13728: ZDI-CAN-2202

  • 13729: ZDI-CAN-2203

  • 13730: ZDI-CAN-2204

  • 13744: Pwn2Own: ZDI-CAN-2226

  • 13749: Pwn2Own: ZDI-CAN-2223

  • 13174: HTTP: Microsoft Internet Explorer textArea Use-After-Free Vulnerability (ZDI-13-222)

  • 13522: HTTP: Microsoft Internet Explorer CHwRasterizer Memory Corruption Vulnerability (ZDI-14-019)

  • 13683: HTTP: Microsoft Internet Explorer ruby text Tag Buffer Overflow Vulnerability (ZDI-14-034)

  • 12041: HTTP: Suspicious ActiveX Instantiation (ZDI-12-027)

  • 13745: Pwn2Own: ZDI-CAN-2227

     

Vendor: Mozilla

  • 13739: Pwn2Own: ZDI-CAN-2219

  • 13740: Pwn2Own: ZDI-CAN-2220

  • 13743: Pwn2Own: ZDI-CAN-2225

     

    Vendor: PineApp Mail-SeCure

  • 13702: HTTP: PineApp Mail-SeCure Remote Command Execution Vulnerability (ZDI-13-185)

  • 13707: HTTP: PineApp Mail-SeCure Install License Command Injection Vulnerability (ZDI-13-186)

  • 13713: HTTP: PineApp Mail-SeCure Remote Command Execution Vulnerability (ZDI-13-185)

  • 13714: HTTP: PineApp Mail-SeCure Install License Command Injection Vulnerability (ZDI-13-186)

 

Vendor: Persistent Systems

13720: ZDI-CAN-2142

 

Stay tuned for next week’s filter update. Don’t forget, customers can download their Digital Vaccine package through the SMS client from the HP TippingPoint Threat Management Center.

 

If you have questions, reach out to TP Product Marketing!

0 Kudos
About the Author

MarthaAviles

Events
Each Month in 2016
Online
Software Expert Days - 2016
Join us online to talk directly with our Software experts during online Expert Days. Find information here about past, current, and upcoming Expert Da...
Read more
Sep 30
Seattle, WA
OpenStack Days Seattle
OpenStack Days Seattle, September 30, is the largest gathering of OpenStack users and prospective users in the Pacific Northwest region.
Read more
View all