http://research.eeye.com/html/alerts/zeroday/index.htmlPublicly disclosed software, hardware and Internet security vulnerabilities that do not have a manufacturer fix or patch.en-usCopyright 2006 eEye Digital Securityhttp://blogs.law.harvard.edu/tech/rssTue, 9 Feb 2010 07:40:00 PSTTue, 9 Feb 2010 07:40:00 PST 360A remote code execution vulnerability exists within Microsoft Excel which may allow for a remote attacker to execute arbitrary code under the context of the logged in user.http://research.eeye.com/html/alerts/zeroday/20090224.htmlhttp://research.eeye.com/html/alerts/zeroday/20090224.html Tue, 24 Feb 2009 12:00:00 PSTA vulnerability exists within Adobe Acrobat that allows an attacker to execute arbitrary code on a victims machine if they view a malicious PDF document.http://research.eeye.com/html/alerts/zeroday/20090212.htmlhttp://research.eeye.com/html/alerts/zeroday/20090212.html Thu, 19 Feb 2009 12:00:00 PSTThe Creative Software AutoUpdate Engine ActiveX control is a component that provides automatic update capabilities to Creative Labs software. This ActiveX control is provided by the file CTSUEng.ocx. The Create Software AutoUpdate Engine ActiveX control is marked Safe For Scripting and Safe For Initialization, which means that a web page in Internet Explorer has the ability to interact with the control. This ActiveX control contains a stack buffer overflow in the CacheFolder property. Exploit code for this vulnerability is publicly available.http://research.eeye.com/html/alerts/zeroday/20080526.htmlhttp://research.eeye.com/html/alerts/zeroday/20080526.html Mon, 26 May 2008 12:00:00 PSTA denial of service vulnerability exists within the Internet Connection Sharing service in Microsoft Windows XP.http://research.eeye.com/html/alerts/zeroday/20061028.htmlhttp://research.eeye.com/html/alerts/zeroday/20061028.html Sat, 28 Oct 2006 12:00:00 PSTThe three referenced exploits take advantage of an inherent problem in RPC, in which an attacker gets to supply the size of an output buffer, and RPC allocates the buffer and (more importantly) initializes it to zeroes, which causes the entire memory range to become committed.http://research.eeye.com/html/alerts/zeroday/20051116.htmlhttp://research.eeye.com/html/alerts/zeroday/20051116.html Wed, 16 Nov 2005 12:00:00 PST