The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
Each user customizes the list of software to track.
As soon as Vigil@nce publishes an alert for one of his software, the user receives a bulletin, containing an helpful explanation of the threat, its patches and workarounds.
The administrator then uses the online Vigil@nce diary in order to plan and track the security process.
Next page...
|
public vulnerabilities| 2 |
Cisco IOS, Cisco Unified Communications Manager: memory leak via SIP
An attacker can send malformed SIP packets, in order to generate a memory leak in Cisco IOS and Cisco Unified Communications Manager, leading to a denial of service. |
| 1 |
socat: buffer overflow via READLINE
An attacker, who can transmit information to socat, can generate a buffer overflow, in order to execute code. |
| 2 |
Cisco IOS: denials of service
An attacker can use several Cisco IOS vulnerabilities, in order to create a denial of service. |
| 3 |
XnView: multiple vulnerabilities
An attacker can invite the victim to open a malicious image with XnView, in order to stop it or to execute code. |
| 2 |
PHP: two vulnerabilities
An attacker can use two vulnerabilities of PHP, in order to read or create files. |
| 3 |
libvorbis: memory corruption
An attacker can invite the victim to open a malicious Ogg Vorbis document with an application linked to libvorbis, in order to corrupt the memory, which stops the application, or leads to code execution. |
| 2 |
Samba: changing the owner of files via RPC LSA
An authenticated user can take ownership of files of other users, which are provided via Samba. |
| 3 |
Citrix XenServer Web Self Service: multiple vulnerabilities
An attacker can use several vulnerabilities of the Web Self Service component of Citrix XenServer. |
| 3 |
libpng: buffer overflow via png_decompress_chunk
An attacker can invite the victim to open a malicious PNG image with an application linked to libpng, in order to create an overflow, which stops the application, or leads to code execution. |
| 3 |
Adobe Shockwave Player: several vulnerabilities
Several Adobe Shockwave Player vulnerabilities can be used by an attacker to execute code or to create a denial of service. |
|
|
recent vulnerabilities
| 3 |
OpenOffice.org: memory corruption via Wordperfect
An attacker can invite the victim to open a malicious Wordperfect document with OpenOffice.org, in order to execute code on his computer. |
| 1 |
LibreOffice, OpenOffice: denial of service via PowerPoint
An attacker can create a malicious PowerPoint document, and invite the victim to open it with LibreOffice/OpenOffice, in order to stop it. |
| 3 |
LibreOffice, OpenOffice: integer overflow via JPEG
An attacker can invite the victim to open a document containing a malicious JPEG image with LibreOffice/OpenOffice, in order to execute code on his computer. |
| 3 |
QuickTime: several vulnerabilities
Several QuickTime vulnerabilities can lead to code execution. |
| 2 |
GnuTLS: double memory free via Certificate List
An attacker can use a malformed certificate list, in order to generate a double memory free in GnuTLS, leading to a denial of service or to code execution. |
| 2 |
gdk-pixbuf: memory corruption via read_bitmap_file_data
An attacker can create a malicious XBM image in order to generate an overflow in applications linked to gdk-pixbuf, which leads to a denial of service or to code execution. |
| 1 |
socat: buffer overflow via READLINE
An attacker, who can transmit information to socat, can generate a buffer overflow, in order to execute code. |
| 2 |
Horde Kronolith H4: Cross Site Scripting
An attacker can use several Cross Site Scripting of Horde Kronolith H4, in order to execute JavaScript code in the context of the web site. |
| 2 |
Cisco Unified MeetingPlace: Cross Site Scripting of Account
An attacker can create a Cross Site Scripting in the Account management page of Cisco Unified MeetingPlace. |
| 3 |
Cisco Secure Access Control Server: several vulnerabilities
An attacker can use several vulnerabilities of Cisco Secure Access Control Server, in order to obtain or alter data, or to execute code. |
|
Vulnerabilities are discovered daily and published on thousands of internet information sources.
Vigil@nce describes these vulnerabilities and how to protect your system. This information is customized according to your environment, it is available on a web site and sent by e-mail alerts.
Your team secures and protects your networks based on Vigil@nce information and tools.
your environment
- a database describing more than 10000 vulnerabilities and their 20000 solutions
- a web space where each user defines his preferences
- alert and synthesis e-mails, to inform your teams
- a customized tracking of your software and systems
- a diary to plan solutions to install, and to monitor the security process of each computer
- a manager view, and customized reports
your benefits
- a customized watch on computer vulnerabilities and their solutions
- an experienced team at your service for more than 10 years
- a tool to monitor the security process of your networks and computers
- a CVE compatible solution
- a time saving for your team which concentrates on important tasks
|
|