Did you know: HP TippingPoint offers Zero-Day coverage to our customers

Did you know our DVLabs team creates about 20 filters a week? And that we’ve had 90 released filters since the start of 2014? If you do the math, that’s 90 in 3 months! Typically, 1 in 12 filters released are zero-day, and if you want to look at the latest, check out our ZDI site for the latest upcoming advisories.

 

We have been leading the pack for quite a while and have won the Frost & Sullivan Company of the Year Award for Vulnerability Research for 4 consecutive years!

 TP for march.jpg

Just in the month of March thus far, we’ve released all of these zero-day filters below.

 

Vendor: Adobe

  • 13735: Pwn2Own: ZDI-CAN-2210

  • 13738: Pwn2Own: ZDI-CAN-2216

  • 13748: Pwn2Own: ZDI-CAN-2235

     

Vendor: Alienvault

  • 13723: ZDI-CAN-2181

  • 13731: ZDI-CAN-2182

     

Vendor: Apple

  • 13734: Pwn2Own: ZDI-CAN-2206

  • 13742: Pwn2Own: ZDI-CAN-2221

     

Vendor: Attachmate

  • 13717: ZDI-CAN-2106

  • 13732: ZDI-CAN-2075

     

Vendor: EMC

  • 13688: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-279)

  • 13690: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-282)

  • 13691: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-280)

  • 13703: HTTP: EMC Connectrix Manager Converged Network Edition Directory Traversal (ZDI-13-281, ZDI-13-283)

     

Vendor: Google

  • 13737: Pwn2Own: ZDI-CAN-2214

  • 13746: Pwn2Own: ZDI-CAN-2229

  • 13747: Pwn2Own: ZDI-CAN-2233

     

Vendor: HP

  • 13649: ZDI-CAN-2083

  • 13650: ZDI-CAN-2140

  • 13678: ZDI-CAN-2104

  • 13680: ZDI-CAN-2153,2170

  • 13681: ZDI-CAN-2078,2173-2179

  • 13733: ZDI-CAN-2083

     

Vendor: IBM

  • 13668: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-284)

  • 13669: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-285)

  • 13673: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-284)

  • 13674: HTTP: IBM Rational Focal Point Login Servlet Information Disclosure (ZDI-13-285)

     

Vendor: Microsoft

  • 13651: ZDI-CAN-2159

  • 13652: HTTP: Microsoft Office OOXML Vanish Tag Use-After-Free Vulnerability (ZDI-11-347)

  • 13653: ZDI-CAN-2166

  • 13718: ZDI-CAN-2169

  • 13724: ZDI-CAN-2099

  • 13725: ZDI-CAN-2156

  • 13726: ZDI-CAN-2166

  • 13728: ZDI-CAN-2202

  • 13729: ZDI-CAN-2203

  • 13730: ZDI-CAN-2204

  • 13744: Pwn2Own: ZDI-CAN-2226

  • 13749: Pwn2Own: ZDI-CAN-2223

  • 13174: HTTP: Microsoft Internet Explorer textArea Use-After-Free Vulnerability (ZDI-13-222)

  • 13522: HTTP: Microsoft Internet Explorer CHwRasterizer Memory Corruption Vulnerability (ZDI-14-019)

  • 13683: HTTP: Microsoft Internet Explorer ruby text Tag Buffer Overflow Vulnerability (ZDI-14-034)

  • 12041: HTTP: Suspicious ActiveX Instantiation (ZDI-12-027)

  • 13745: Pwn2Own: ZDI-CAN-2227

     

Vendor: Mozilla

  • 13739: Pwn2Own: ZDI-CAN-2219

  • 13740: Pwn2Own: ZDI-CAN-2220

  • 13743: Pwn2Own: ZDI-CAN-2225

     

    Vendor: PineApp Mail-SeCure

  • 13702: HTTP: PineApp Mail-SeCure Remote Command Execution Vulnerability (ZDI-13-185)

  • 13707: HTTP: PineApp Mail-SeCure Install License Command Injection Vulnerability (ZDI-13-186)

  • 13713: HTTP: PineApp Mail-SeCure Remote Command Execution Vulnerability (ZDI-13-185)

  • 13714: HTTP: PineApp Mail-SeCure Install License Command Injection Vulnerability (ZDI-13-186)

 

Vendor: Persistent Systems

13720: ZDI-CAN-2142

 

Stay tuned for next week’s filter update. Don’t forget, customers can download their Digital Vaccine package through the SMS client from the HP TippingPoint Threat Management Center.

 

If you have questions, reach out to TP Product Marketing!

Labels: HP| security
Leave a Comment

We encourage you to share your comments on this post. Comments are moderated and will be reviewed
and posted as promptly as possible during regular business hours

To ensure your comment is published, be sure to follow the Community Guidelines.

Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
Search
Showing results for 
Search instead for 
Do you mean 
About the Author
Featured


Follow Us
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.