HOME > RESOURCES > ZERO-DAY VULNERABILITY


E-CQURITY Zero-Day Vulnerability tracker is built to help you understand true risks of information security. All the vulnerabilities listed below are the results of our researches and they have not been disclosed to the vendors or public. Though in the past we have clearly supported responsible disclosure of security vulnerability, now we no longer endorse it.

While we are trying to keep the information as accurate as possible, we cannot guarantee that these vulnerabilities are indeed zero-day since it is a known fact that they may have been circled around among the hackers for a long time.

The list below covers some of the vulnerabilities that we have in our lab and this list will be updated when we see fit.

2009

CPanel - Root Privilege Escalation

Vendor: CPanel Inc.

Version: 11.24.5-RELEASE

Severity: High

Patch Availability: No


2009

CPanel - Privilege Escalation

Vendor: CPanel Inc.

Version: 11.24.5-RELEASE

Severity: High

Patch Availability: No


2009

CPanel - Arbitrary File Viewing

Vendor: CPanel Inc.

Version: 11.24.5-RELEASE

Severity: Medium

Patch Availability: No


2008

Belkin Router - Admin Remote Access

Vendor: Belkin

Version: F5D8233-4 V3, firmware 3.01.29

Severity: Critical

Patch Availability: No


2006

D-Link/Cipherium Internet Hotspot (Embedded System) - Code Execution

Vendor: D-Link/Cipherium

Version: Bonalinx W-1300, firmware 1.5

Severity: High

Patch Availability: N/A


2005

Sawmill Log Analyzer - Code Execution

Vendor: Sawmill

Version: 7.0.X, < 7.1.6

Severity: High

Patch Availability: No


2005

Sawmill Log Analyzer - Arbitrary Directory Browsing

Vendor: Sawmill

Version: 7.0.X, < 7.1.6

Severity: Medium

Patch Availability: No


2005

Sawmill Log Analyzer - Arbitrary File Viewing

Vendor: Sawmill

Version: 7.0.X, < 7.1.6

Severity: Medium

Patch Availability: No



VIA Agent Login





 

Copyright © 2008 E-cqurity.com. All rights reserved.