Tag Archives: Application

Microsoft Visual Studio 2010 – Vsabv10dt.dll Malformed HTML Null Pointer Dereference Vulnerability

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Visual Studio 2010 / Vsabv10dt.dll
Date: 13/10/2011
Product: Microsoft Microsoft Visual Studio 2010/ VVsabv10dt.dll
Vendor: Notified
Internal Id: MSRC 11644

We have discovered that the product “Microsoft Visual Studio 2010 – Vsabv10dt.dll” presents a big hole regarding a Remote NULL Pointer Dereference , crashing the application when you run special  code .

Microsoft Office 2010 BCSAutogen.dll – Remote Unhandled exception Vulnerability

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Office 2010 Component  BCSAutogen.dll
Date: 10/10/2011
Product: Microsoft Office 2010 Component  BCSAutogen.dll
Vendor: Notified
Internal Id: MSRC 11641

We have discovered that the product “Microsoft Office 14 Component  BCSAutogen.dll” presents a big hole regarding an unhandled exception rather than a memory corruption, crashing the application when you run special  code .

Quick Time Player 7.6.9 – ActiveX Control Buffer Overflow Vulnerability

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: QuickTimePlayer_7.6.9
Date: 06/09/2011
Product:QuickTimePlayer_7.6.9
Vendor Notified: 2 months ago  “Apple Inc  / bugreport.apple.com ”
Problem ID: 9753778

We have discovered that the product “QuickTimePlayer_7.6.9″ presents a big hole regarding an ActiveX Control Buffer Overflow, crashing the application when you run special code.


VMware Exe’s Files Affected – Access Violation Memory Vulnerability

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: VMware Virtual Image Editing Framework 4.0.0 build-111735
Date: 05/09/2011
Product:VMware Virtual Image Editing Framework 4.0.0 build-111735
Vendor Notified: VMware Inc.

We have discovered that the product “VMware Virtual Image Editing Framework 4.0.0 build-111735″ presents a big hole regarding an Access Violation Code , crashing the application when you run special code.


VMware Virtual Image Editing Framework – DLL Untrusted Library Loading Execution Code

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: VMware Virtual Image Editing Framework 4.0.0 build-111735
Date: 05/09/2011
Product: VMware Virtual Image Editing Framework
Vendor Notified: VMware Inc.

We have discovered that the product “VMware Virtual Image Editing Framework 4.0.0 build-111735″ presents a big hole as regard to DLL hijacking;The basis of this exploit is the way in which Python works and how it loads DLL files used by many applications, if an application calls a DLL without specifying an absolute path Windows will conduct a search for the DLL file in various set locations.

Microsoft Visual Studio 2010 – Vswizard.dll Malformed HTML Null Pointer Dereference Vulnerability

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Microsoft Visual Studio 2010
Date: 01/10/2011
Product: Microsoft Visual Studio 2010
Vendor: Notified
Internal Id: MSRC 11643

We have discovered that the product “Microsoft Visual Studio 2010″ presents a big hole regarding a Remote NULL Pointer Dereference , crashing the application when you run special  code .

Python 3.2 – DLL Untrusted Library Loading Execution Code

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Python 3.1 3.2 Pythonw
Date: 28/08/2011
Product: Python
Vendor: Notified

We have discovered that the product “Python 3.1 / 3.2″ presents a big hole as regard to DLL hijacking;The basis of this exploit is the way in which Python works and how it loads DLL files used by many applications, if an application calls a DLL without specifying an absolute path Windows will conduct a search for the DLL file in various set locations.


WebKit2 – Safari 5.1 – Remote Memory Corruption Vulnerability

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: WebKit2 – Safari 5.1
Date:28/08/2011
Product: WebKit2 – Safari 5.1
Vendor: Notified Last Month

We have discovered that the product “WebKit 2 on Safari 5.1″  is prone to a remote memory-corruption vulnerability . An attacker could exploit this issue by enticing a victim to open and interact with malicious html files. Successfully exploiting this issue will corrupt memory and crash the service.  “After run this POC the WebKit2 service will crash as Access Violation Memory.”


Real Player 14 – Untrusted Library Loading Execution Code

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: Real Player 14
Date: 25/08/2011
Product: Realplayer
Vendor: Notified


We have discovered that the product “Real Player 14″ presents a big hole regarding a DLL hijacking;The basis of this exploit is the way in which Real Player works and how it loads DLL files used by many applications, if an application calls a DLL without specifying an absolute path Windows will conduct a search for the DLL file in various set locations.This of course can and is being abused.

ArcSoft PhotoImpression – Untrusted Library Loading Execution Code

Author(s): Ivan Sanchez & Hernan Hegykozi
Contact Us: security@evilcode.com.ar
Versions: PhotoImpression 6
Date: 20/08/2011
Product: PhotoImpression/ CheckUpdate.exe
Vendor: ArcSoft


We have discovered that the product “ArcSoft / CheckUpdate.exe” presents a big hole regarding a DLL hijacking;The basis of this exploit is the way in which Arcsoft works and how it loads DLL files used by many applications, if an application calls a DLL without specifying an absolute path Windows will conduct a search for the DLL file in various set locations.This of course can and is being abused.