Our Security Findings

From time to time, we do encounter software or systems that countain security vulnerabilites. Well, actually, we rarely encounter a system that is not vulnerable. Some of the issues we find are in custom software, and we work closely with the respective parties to get it fixed. In other cases, the issues we find are in widely-distributed systems. In those cases, we make every effor to follow responsible disclosure policies. Below is a short list of some of the issues we have identified and have chosen publicly disclosed.

Published Findings

2009-01-Rovio-insecurity - WowWee Rovio - Insufficient Access Controls - Covert Audio/Video Snooping Possible
Rovio from WowWee does not adequately secure all accessible URLs or media streams, enabling an unauthorized user with network access to the robotic webcam platform the ability to listen to and view audio/video streamed from the device's onboard camera. Additionally, audio-send capabilities are also not secured, enabling mischievous sending of audio through Rovio's built-in speaker. Additional manipulations may be possible, robot control does not appear to be impacted at this time.
CVE-2008-1093 - InstallShield Update Agent - Remote "Rule Script" Code Execution
InstallShield Update Agent uses insecure methods of retrieving operational script code from unauthenticated, unverified external sources over HTTP. Arbitrary remote code execution is possible on all known product versions.
CVE-2008-2470 - InstallShield Update Service ActiveX control - memory corruption, remote code execution
The InstallShield Update Service ActiveX control contains a memory corruption vulnerability that could allow a remote, unauthenticated attacker to execute arbitrary code ona vulnerable system.
CVE-2008-3337 - PowerDNS before 2.9.21.1 - Drops malformed queries
Blog Entry - PowerDNS drops obscure DNS queries, enabling easier "Kaminsky style" attack by even less sophisticated foes.

Disclosure Policies

We take every effort to follow responsible dislosure procedures where appropriate and possible. If you have been party to an ISSUE that we have identified, please review our Vulnerablity Disclosure Policy for the guidelines that we attempt to follow. Feel free to contact us should you have any questions.


Website Copyright © by Simplicity Communications. All Rights Reserved.