rgod

This site is by Andrea Micalizzi, also known as rgod, also known as retrogod,and occasionally from my friends of 9SG.

I am atheist. Communist. Very patient guy. This is the one and only official site that contains articles, security advisories and proof of concepts related to my work as independent security researcher. Exploits on this site are not weaponized and are intended as mere evidence of vulnerability found by me. I already work as an external consultant for various companies and I am *NOT* interested in any other job one can do from an office (place often populated by clowns). I don't teach hacking. I don't exploit holes in public sites or networks. I don't need your fifteen grands for a vulnerability in Internet Explorer, Firefox, Apache web server or PHP because I am already rich (I am very good at my work). Also, important, I am a very busy person and I respond only to very smart emails once in a lifetime. The 'news of my death' was a practical joke organized and perpetrated by me and my friends to protect me from occasional pests and idiots. In facts, no death certificate has ever been produced if you had the smartness to monitor and if you were a real-life phone phreaker, which you are not. I delivered myself the site credentials to "9 situations group" to keep the site in months when not practicing my activity and I was enjoyng life after healing from an heavy infection of the bone marrow caused in 2008 by a trivial influence. I want to thanks all the people that are used to copy and paste (bad attitude) while erecting sites in my honor, but no one ever asked. This site had never been hacked from 2004 since it started.

 

Disclaimer

The site was created for educational and research purpose only. The author of the site doesn’t hold any responsibility over the misuses the software contained and, even, prohibits them.


 

 

 

Art

An ink sketch I've done after the painting version. Somehow, I prefer this.


writings

L'uomo dalle ciglia cucite alla fronte

Jan 13, 2005 - Author: rgod

Scritto bolognese, mai corretto. Riscritto trenta volte, difficile lavoro di sottrazione. Comprendeva chorps trans, diviso in due sezioni.

leggi tutto...

chorps trans

Aug 23, 2004 - Author: rgod

Raccolta di scritti proveniente da Bologna (tre anni fa? poesia narrativa?)

leggi tutto...


Research

I will update this section when is needed. A list of vulnerabilities is availiable here , here or here.


Advisories

released through vulnerability affiliation programs

Author: rgod - Updated: Dec 01, 2014 - You will probably find a list of upcoming vulnerabilities here.
[ZDI] Foxit ActiveX Pro SDK SetLogFile Buffer Overflow Remote Code Execution Vulnerability
[ZDI] Autodesk Design Review AdView.AdViewer.1 Remote Code Execution Vulnerability
[ZDI] Samsung SmartViewer CNC_Ctrl ActiveX Control BackupToAvi Remote Code Execution Vulnerability
[ZDI] PTC IsoView ActiveX Control ViewPort Heap Buffer Overflow Remote Code Execution Vulnerability
[ZDI] PTC IsoView Activex Control Multiple Animation Methods Stack Buffer Overflow Remote Code Execution Vulnerability
[ZDI] ManageEngine OpUtils ConfigSaveServlet saveFile Information Disclosure Vulnerability
[ZDI] Rockwell Automation Connected Components Workbench RA.ViewElements.Row.1 Arbitrary Write Remote Code Execution Vulnerability
[ZDI] Rockwell Automation Connected Components Workbench RA.ViewElements.Grid.1 Arbitrary Write Remote Code Execution Vulnerability
[ZDI] Ecava IntegraXor Guest Acccount Information Disclosure Vulnerability
[ZDI] Panasonic Network Camera Recorder NcrCtl4.NcrNet.1 GetVOLHeader Arbitrary Write Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Sprinter TTF16.ocx AttachToSS Memory Corruption Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Sprinter TTF16.ocx CopyRange/CopyRangeEx Memory Corruption Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Sprinter TTF16.ocx DefaultFontName Memory Corruption Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Sprinter TTF16.ocx SwapTables Method Memory Corruption Remote Code Execution Vulnerability
[ZDI] (0Day) Apple QuickTime 'mvhd' Atom Heap Memory Corruption Remote Code Execution Vulnerability
[ZDI] SolarWinds Storage Manager AuthenticationFilter Remote Code Execution Vulnerability
[ZDI] Novell Groupwise Administration Server FileUploadServlet poLibMaintenanceFileSave Information Disclosure Vulnerability
[ZDI] (0Day) F5 Data Manager discoverFilerBasicInfo.jsft filerName SQL Injection Remote Code Execution Vulnerability
[ZDI] Attachmate Reflection Pro FTP rftpcom15.dll GetSiteProperties3 Remote Code Execution Vulnerability
[ZDI] Attachmate Reflection Secure FTP Client rftpcom.dll SaveSettings Remote Code Execution Vulnerability
[ZDI] Attachmate Reflection Secure FTP Client rftpcom.dll StartLog Remote Code Execution Vulnerability
[ZDI] Attachmate Reflection Secure FTP Client rftpcom.dll Multiple Memory Corruption Remote Code Execution Vulnerabilities
[ZDI] Attachmate Verastream Process Designer Process Server Remote Code Execution Vulnerability
[ZDI] Shunra Network Virtualization for Hewlett-Packard toServerObject() Remote Code Execution Vulnerability
[ZDI] Shunra Network Virtualization for Hewlett-Packard storedNtxFile() Information Disclosure Vulnerability
[ZDI] Oracle Business Intelligence Mobile App Designer UIXCacheResourceServlet Information Disclosure Vulnerability
[ZDI] Hewlett-Packard SiteScope EmailServlet servlet Information Disclosure Vulnerability
[ZDI] (0Day) Embarcadero ER/Studio Data Architect TSVisualization ActiveX loadExtensionFactory Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard AutoPass License Server Remote Code Execution Vulnerability
[ZDI] Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 Multiple Methods Remote Code Execution Vulnerability
[ZDI] Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 FrameAdvanceReader Method Remote Code Execution Vulnerability
[ZDI] Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 DeleteDeviceProfile Method Remote Code Execution Vulnerability
[ZDI] Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 FindConfigChildeKeyList Method Stack Buffer Overflow Remote Code Execution Vulnerability
[ZDI] Samsung iPOLiS Device Manager XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ChangeControlLocalName Method Remote Code Execution Vulnerability
[ZDI] Samsung iPOLiS Device Manager XNSSDKWINDOW.XnsSdkWindowCtrlForIpInstaller.1 Start Method Remote Code Execution Vulnerability
[ZDI] (0Day) Rocket Servergraph Admin Center for TSM userRequest save_server_groups Command Remote Code Execution Vulnerability
[ZDI] (0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet del Command Denial of Service Vulnerability
[ZDI] (0Day) Rocket Servergraph Admin Center for TSM userRequest/tsmRequest Command Injection Remote Code Execution Vulnerability
[ZDI] (0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet readDataFile Command Information Disclosure Vulnerability
[ZDI] (0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet run/runClear Command Remote Code Execution Vulnerability
[ZDI] (0Day) Rocket Servergraph Admin Center for TSM fileRequestServlet writeDataFile Command Remote Code Execution Vulnerability
[ZDI] (0Day) Novell NetIQ Sentinel Agent Manager NQMcsVarSet DumpToFile Remote Code Execution Vulnerability
[ZDI] (0Day) SolarWinds Network Configuration Manager PEstrarg1 Heap Overflow Remote Code Execution Vulnerability
[ZDI] Symantec Workspace Streaming Agent XMLRPC Request putFile Method Remote Code Execution Vulnerability
[ZDI] (0day) Borland Silk Central TeeChart ActiveX Control GridLink Remote Code Execution Vulnerability
[ZDI] (0Day) Borland StarTeam Web Server AttachmentService performCheckoutFile Remote Information Disclosure Vulnerability
[ZDI] Ecava IntegraXor Guest Acccount Information Disclosure Vulnerability
[ZDI] SolarWinds Server and Application Monitor PEstrarg1 ActiveX Heap Overflow Remote Code Execution Vulnerability
[ZDI] Oracle Data Quality LoaderWizard ActiveX Remote Code Execution Vulnerability
[ZDI] Oracle Data Quality FileChooserDlg onChangeDirectory Remote Code Execution Vulnerability
[ZDI] Oracle Data Quality PostcardPreviewInt onclose Remote Code Execution Vulnerability
[ZDI] Oracle Data Quality DscXB onloadstatechange Remote Code Execution Vulnerability
[ZDI] Oracle Data Quality DateTimeWrapper onchange Remote Code Execution Vulnerability
[ZDI] Oracle Event Processing FileUploadServlet Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Virtual User Generator EmulationAdmin Service Information Disclosure Vulnerability
[ZDI] Hewlett-Packard Universal CMDB Integration Service UploadScansServlet Remote Code Execution Vulnerability
[ZDI] CA ERwin Web Portal MIMM ProfileIconServlet Multiple Information Disclosure Vulnerabilities
[ZDI] CA ERwin Web Portal MIMM FileAccessServiceProvider Denial of Service Vulnerability
[ZDI] CA ERwin Web Portal MIMM ConfigServiceProvider Information Disclosure Vulnerability
[ZDI] CA ERwin Web Portal MIMM downloadScriptFile.do Information Disclosure Vulnerability
[ZDI] CA ERwin Web Portal MIMM ConfigServiceProviderServlet Remote File Creation/Overwrite Vulnerability
[ZDI] Advantech WebAccess DBVisitor.dll SQL Injection Remote Code Execution Vulnerability
[ZDI] SolarWinds Firewall Security Manager FSMWebService Information Disclosure Vulnerability
[ZDI] SolarWinds Server and Application Monitor VSReport Remote Code Execution Vulnerability
[ZDI] SolarWinds Server and Application Monitor Apex Stack Buffer Overflow Remote Code Execution Vulnerability
[ZDI] SolarWinds Server and Application Monitor C1Chart3D8 Array Indexing Remote Code Execution Vulnerability
[ZDI] SolarWinds Server and Application Monitor wpdlx Remote Code Execution Vulnerability
[ZDI] HP Unified Functional Testing ExGrid SaveXML Remote Code Execution Vulnerability
[ZDI] Avaya IP Office one-X Portal Remote Code Execution Vulnerability
[ZDI] McAfee Cloud Identity Manager ExtensionAccessServlet Information Disclosure Vulnerability
[ZDI] Hewlett-Packard Application Information Optimizer Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Application Information Optimizer Credential Information Disclosure Vulnerability
[ZDI] WellinTech KingSCADA KingAlarm & Event KAEManageServer Information Disclosure Vulnerability
[ZDI] WellinTech KingScada KingGraphic kxClientDownload ActiveX Remote Code Execution Vulnerability
[ZDI] IBM Rational Focal Point RequestAccessController Servlet Information Disclosure Vulnerability
[ZDI] IBM Rational Focal Point LoginController Servlet Information Disclosure Vulnerability
[ZDI] EMC Connectrix Manager Converged Network Edition inmservlets.war SoftwareFileUploadMoreInfoServlet Remote Code Execution Vulnerability
[ZDI] EMC Connectrix Manager Converged Network Edition inmservlets.war Information Disclosure Vulnerability
[ZDI] EMC Connectrix Manager Converged Network Edition inmservlets.war UnifiedFileUploadMoreInfoServlet Remote Code Execution Vulnerability
[ZDI] EMC Connectrix Manager Converged Network Edition inmservlets.war FileUploadController Servlet Remote Code Execution Vulnerability
[ZDI] EMC Connectrix Manager Converged Network Edition FileUploadController Servlet Remote Code Execution Vulnerability
[ZDI] EMC Connectrix Manager Converged Network Edition inmservlets.war BootFileUploadMoreInfoServlet Remote Code Execution Vulnerability
[ZDI] Cisco WAAS Mobile Server ReportReceiver CAB Processing Remote Code Execution Vulnerability
[ZDI] IBM Forms Viewer 'fontname' Stack Buffer Overflow Remote Code Execution Vulnerability
[ZDI] Cisco Data Center Network Manager fileUploadServlet Remote Code Execution Vulnerability
[ZDI] Cisco Data Center Network Manager processImageSave_jsp Remote Code Execution Vulnerability
[ZDI] Cisco Data Center Network Manager downloadServlet Remote Information Disclosure Vulnerability
[ZDI] HP SiteScope issueSiebelCmd SOAP Request Remote Code Execution Vulnerability
[ZDI] HP Application Lifecycle Management GossipService SOAP Request Remote Code Execution Vulnerability
[ZDI] HP Virtual User Generator EmulationAdmin Service getReport Remote Code Execution Vulnerability
[ZDI] HP Virtual User Generator EmulationAdmin Service saveCodeRuleFile Remote Code Execution Vulnerability
[ZDI] HP Virtual User Generator EmulationAdmin Service copyFileToServer Remote Code Execution Vulnerability
[ZDI] HP Business Process Monitor tp_bpm_admin.exe Remote Code Execution Vulnerability
[ZDI] ABB MicroSCADA Wserver wserver.exe Remote Code Execution Vulnerability
[ZDI] ABB RobotStudio Tools CWGraph3D ActiveX Control Remote Code Execution Vulnerability
[ZDI] PANDA Security Communications Agent Service Pagent.exe 'MESSAGE_FROM_REMOTE' Remote Code Execution Vulnerability
[ZDI] Oracle BPEL Process Manager ScriptServlet Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Intelligent Management Center APM monitorId SQL Injection Vulnerability
[ZDI] Hewlett-Packard Intelligent Management Center SOM sdFileDownload Servlet Information Disclosure Vulnerability
[ZDI] Hewlett-Packard Intelligent Management Center CommonUtils Static DES/ECB Decryption Key Vulnerability
[ZDI] Hewlett-Packard Intelligent Management Center SOM euAccountService Servlet Authentication Bypass Vulnerability
[ZDI] Hewlett-Packard Intelligent Management Center BIMS bimsDownload Servlet Information Disclosure Vulnerability
[ZDI] Hewlett-Packard Intelligent Management Center BIMS UploadServlet Remote Code Execution Vulnerability
[ZDI] HP PCM+ and Application Lifecycle Management JBoss Invoker Servlets Marshalled Object Remote Code Execution Vulnerability
[ZDI] HP PCM+ AgentController Servlet Command Injection Remote Code Execution Vulnerability
[ZDI] HP PCM+ GetEventsServlet SQL Injection Remote Code Execution Vulnerability
[ZDI] HP PCM+ SNAC Registration Server UpdateDomainControllerServlet Remote Code Execution Vulnerability
[ZDI] HP PCM+ SNAC Registration Server UpdateCertificatesServlet Remote Code Execution Vulnerability
[ZDI] VMware vCenter Chargeback Manager ImageUploadServlet Remote Code Execution Vulnerability
[ZDI] Cogent Datahub Stack Buffer Overflow Remote Code Execution Vulnerability
[ZDI] Oracle Endeca Server attachDataStore SOAP Request Remote Code Execution Vulnerability
[ZDI] Oracle Endeca Server createDataStore SOAP Request Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard SiteScope SOAP Call runOMAgentCommand Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard LoadRunner micWebAjax.dll ActiveX Control NotifyEvent Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard LoadRunner lrLRIServices ActiveX Control SetOutputDirectory Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard LoadRunner LrWebIEBrowserMgr.dll ActiveX Control FlushSnapshotToFile Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard LoadRunner lrFileIOService ActiveX Control CreateFileCont Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard LoadRunner lrFileIOService ActiveX Control WriteFileBinary Remote Code Execution Vulnerability
[ZDI] Apple QuickTime Movie File mvhd Atom Handling Heap Buffer Underflow
[ZDI] F-Secure Multiple Products Unspecified ActiveX Control Arbitrary SQL Statement Execution
[ZDI] EMC Data Protection Advisor Web UI Traversal Arbitrary File Reading
[ZDI] Novell ZENworks Mobile Management MDM.php language Parameter Traversal Local File Inclusion
[ZDI] Novell ZENworks Mobile Management DUSAP.php language Parameter Traversal Local File Inclusion
[ZDI] IBM SPSS Chart2D olch2x32.ocx ActiveX Remote Code Execution Vulnerability
[ZDI] Oracle WebCenter Content CheckOutAndOpen.dll ActiveX coao/openWebdav Remote Code Execution Vulnerability
[ZDI] HP Managed Printing Administrator mdbBuildValueBasedSQL() Remote Code Execution Vulnerability
[Beyond Security] Microsoft Windows Essentials Improper URI Handling Vulnerability
[ZDI] Novell ZENWorks AdminStudio ISProxy ActiveX Remote Code Execution Vulnerability
[ZDI] Novell GroupWise gwcls1.dll ActiveX Control Remote Code Execution Vulnerability
[ZDI] HP Intelligent Management Center flexFileUpload Servlet Remote Code Execution Vulnerability
[ZDI] HP Intelligent Management Center mibFileUpload Servlet Remote Code Execution Vulnerability
[ZDI] HP Intelligent Management Center FaultDownloadServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center ReportImgServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center IctDownloadServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center DownloadReportSourceServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center DownloadServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center UAM acmServletDownload Servlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center TAM tamServletDownload Servlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center SyslogDownloadServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center RssServlet Information Disclosure Vulnerability
[ZDI] HP Intelligent Management Center JavaService Information Disclosure Vulnerability
[ZDI] EMC AppXtender WxSuperCtrl650.ocx ActiveX Control Remote Code Execution Vulnerability
[ZDI] Novell ZENWorks AdminStudio ISGrid.dll ActiveX Remote Code Execution Vulnerability
[ZDI] EMC ApplicationXtender Desktop Viewer AEXView ActiveX AnnoSave Remote Code Execution Vulnerability
[ZDI] HP SiteScope SOAP Call update Remote Code Execution Vulnerability
[ZDI] HP SiteScope SOAP Call loadFileContent Remote Code Execution Vulnerability
[ZDI] HP SiteScope SOAP Call getFileInternal Remote Code Execution Vulnerability
[ZDI] HP SiteScope SOAP Call create Remote Code Execution Vulnerability
[ZDI] HP SiteScope UploadFilesHandler Remote Code Execution Vulnerability
[ZDI] HP SiteScope SOAP Call getSiteScopeConfiguration Remote Code Execution Vulnerability
[ZDI] HP Operations Orchestration RSScheduler Service JDBC Connector Remote Code Execution Vulnerability
[ZDI] HP Application Lifecycle Management XGO.ocx ActiveX Control Remote Code Execution Vulnerability
[ZDI] GE Proficy Historian KeyHelp ActiveX LaunchTriPane Remote Code Execution Vulnerability
[ZDI] Symantec Endpoint Protection SemSvc.exe AgentServlet Remote Code Execution Vulnerability
[ZDI] McAfee SmartFilter Administration Server SFAdminSrv.exe JBoss RMI Remote Code Execution Vulnerabilty
[ZDI] IBM Rational ClearQuest CQOle ActiveX Control Remote Code Execution Vulnerability
[ZDI] Avaya IP Office Customer Call Reporter ImageUpload Remote Code Execution Vulnerability
[ZDI] AOL Products dnUpdater ActiveX Uninitialized Pointer Remote Code Execution Vulnerability
[ZDI] Oracle Forms Recognition CroScPlt.dll ActiveX Control Remote Code Execution Vulnerability
[ZDI] Oracle WebCenter Forms Recognition Sssplt30.ocx ActiveX Control Remote Code Execution Vulnerability
[Beyond Security] Symantec Altiris WISE Package Studio Multiple SQL Injections
[ZDI] IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 Multiple Remote Code Execution Vulnerabilities
[ZDI] IBM Rational Rhapsody BBFlashBack.Recorder.1 TestCompatibilityRecordMode Remote Code Execution Vulnerability
[ZDI] IBM Rational Rhapsody BBFlashBack.Recorder.1 InsertMarker Remote Code Execution Vulnerability
[ZDI] IBM Rational Rhapsody BBFlashBack.FBRecorder.1 Control Multiple Remote Code Execution Vulnerabilities
[ZDI] IBM SPSS VsVIEW6.ocx ActiveX Control SaveDoc Method Remote Code Execution Vulnerability
[ZDI] IBM SPSS ExportHTML.dll ActiveX Control Render Method Remote Code Execution Vulnerability
[ZDI] Total Defense Suite UNC Management Web Service uncsp_ViewReportsHomepage SQL Injection Vulnerability
[ZDI] Total Defense Suite UNC Management Web Service Database Credentials Disclosure Vulnerability
[ZDI] Total Defense Suite UNC Management Console ExportReport SQL Injection Vulnerability
[ZDI] IBM SPSS VsVIEW6.ocx ActiveX Control Multiple Methods Remote Code Execution Vulnerability
[ZDI] IBM SPSS mraboutb.dll ActiveX Control SetLicenseInfoEx Method Remote Code Execution Vulnerability
[ZDI] HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution Vulnerability
[ZDI] HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Execution Vulnerability
[ZDI] McAfee SaaS myCIOScn.dll ShowReport Method Remote Command Execution
[ZDI] HP Managed Printing Administration img_id Multiple Vulnerabilities
[ZDI] HP Managed Printing Administration jobDelivery Multiple Vulnerabilities
[ZDI] HP Managed Printing Administration MPAUploader.dll Remote Code Execution Vulnerability
[ZDI[ HP Managed Printing Administration jobAcct Multiple Vulnerabilities
[ZDI] Enterasys NetSight nssyslogd PRI Remote Code Execution Vulnerability
[ZDI] HP Data Protector Notebook Extension Policy Server LogBackupLocationStatus Remote SQL Injection Vulnerabilty
[ZDI] HP Data Protector Notebook Extension Policy Server LogClientInstallation Remote SQL Injection Vulnerabilty
[ZDI] HP Data Protector Notebook Extension GetPolicies Remote SQL Injection Vulnerabilty
[ZDI] HP Data Protector Notebook Extension Policy Server RequestCopy Remote SQL Injection Vulnerabilty
[ZDI] HP Data Protector Notebook Extension Policy Server LogClientHealth Remote SQL Injection Vulnerabilty
[ZDI] HP Data Protector Notebook Extension Policy Server LogCopyOperation Remote SQL Injection Vulnerabilty
[ZDI] HP Data Protector Notebook Extension Policy Server FinishedCopy Remote SQL Injection Vulnerabilty
[ZDI] Novell ZENWorks Software Packaging ISGrid.Grid2.1 DoFindReplace bstrReplaceText Parameter Remote Code Execution Vulnerability
[ZDI] Novell Zenworks Software Packaging LaunchHelp.dll ActiveX Control LaunchProcess Remote Code Execution Vulnerability
[ZDI] Novell ZENWorks Software Packaging Antique ActiveX Control Remote Code Execution Vulnerability
[ZDI] Symantec IM Manager ProcessAction Remote Code Execution Vulnerability
[ZDI] HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution Vulnerability
[ZDI] CA Total Defense Suite Gateway Security Malformed HTTP Packet Remote Code Execution Vulnerability
[ZDI] Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability
[ZDI] CA Total Defense Suite UNC Management Console RegenerateReport SQL Injection Vulnerability
[ZDI] CA Total Defense Suite UNC Management Console DeleteReports SQL Injection Vulnerability
[ZDI] CA Total Defense Suite UNC Management Console DeleteReportLayout SQL Injection Vulnerability
[ZDI] CA Total Defense Suite NonAssignedUserList Stored Procedure SQL Injection Vulnerability
[ZDI] CA Total Defense Suite UNC Management Console DeleteFilter SQL Injection Vulnerability
[ZDI] CA Total Defense Suite UnassignAdminRoles Stored Procedure SQL Injection Vulnerability
[ZDI] CA Total Defense Suite UnassignFunctionalUsers Stored Procedure SQL Injection Vulnerability
[ZDI] CA Total Defense Suite UNCWS Web Service getDBConfigSettings Credential Disclosure Vulnerability
[ZDI] CA Total Defense Suite Heartbeat Web Service Remote Code Execution Vulnerability
[ZDI] RealNetworks RealPlayer OpenURLInDefaultBrowser Remote Code Execution Vulnerability
[ZDI] McAfee Firewall Reporter GeneralUtilities.pm isValidClient Authentication Bypass Vulnerability
[ZDI] CA Internet Security Suite HIPS XML Security Database Parser Class Remote Code Execution Vulnerability
[ZDI] IBM Lotus Notes cai URI Handler Remote Code Execution Vulnerability
[ZDI] Symantec IM Manager Administrative Interface IMAdminSchedTask.asp Eval Code Injection Remote Code Execution Vulnerability
[ZDI] Oracle GoldenGate Veridata Server XML SOAP Request Parsing Remote Code Execution Vulnerability
[ZDI] Hewlett-Packard Power Manager Administration Web Server Remote Code Execution Vulnerability
[ZDI] Symantec Endpoint Protection Manager Reporting Server fw_charts.php Remote Code Execution Vulnerability
[ZDI] Symantec IM Manager rdServer.dll sGetDefinition SQL Injection Vulnerability
[ZDI] Symantec IM Manager Administrative Interface DetailReportGroup.lgx Definition File SQL Injection Vulnerabilities
[ZDI] Symantec IM Manager Administrative Interface SummaryReportGroup.lgx Definition File SQL Injection Vulnerabilities
[ZDI] Symantec IM Manager Administrative Interface LoggedInUsers.lgx Definition File SQL Injection Vulnerabilities
[ZDI] Symantec IM Manager Administrative Interface rdpageimlogic.aspx SQL Injection Vulnerabilities
[ZDI] Symantec IM Manager Administrative Interface IMAdminReportTrendFormRun.asp SQL Injection Vulnerability
[ZDI] Symantec IM Manager Administrative Interface IMAdminScheduleReport.asp SQL Injection Vulnerability
[ZDI] SAP BusinessObjects Crystal Reports Server CMS.exe Remote Code Execution Vulnerability
[ZDI] Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution Vulnerability
[ZDI] Oracle Secure Backup Web Interface Various Post-Auth Command Injection Remote Code Execution Vulnerabilities
[ZDI[ Oracle Secure Backup Administration Authentication Bypass Vulnerability
[ZDI] Oracle Secure Backup Administration Command Injection Remote Code Execution Vulnerability
[ZDI] Oracle Secure Backup Administration selector Command Injection Remote Code Execution Vulnerability
[ZDI] Adobe Download Manager Atlcom.get_atlcom ActiveX Control Remote Code Execution Vulnerability
[ZDI] CA XOsoft Control Service entry_point.aspx Remote Code Execution Vulnerability/
[ZDI[ CA XOsoft xosoapapi.asmx Multiple Remote Code Execution Vulnerabilities
[ZDI] Skype URI Processing Arbitrary XML File Deletion Vulnerability
[ZDI] Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

rgod journal