Latest CVE Vulnerabilities

CVE-2012-0671 (quicktime)
(05/16/2012) Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .pict file. Read More

CVE-2012-0670 (quicktime)
(05/16/2012) Integer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted sean atom in a movie file. Read More

CVE-2012-0669 (quicktime)
(05/16/2012) Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with Sorenson encoding. Read More

CVE-2012-0668 (quicktime)
(05/16/2012) Buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with RLE encoding. Read More

CVE-2012-0667 (quicktime)
(05/16/2012) Integer signedness error in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTVR movie file. Read More

CVE-2012-0666 (quicktime)
(05/16/2012) Stack-based buffer overflow in the plugin in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTMovie object. Read More

CVE-2012-0665 (quicktime)
(05/16/2012) Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding. Read More

CVE-2012-0664 (quicktime)
(05/16/2012) Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted text track in a movie file. Read More

CVE-2012-0663 (quicktime)
(05/16/2012) Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TeXML file. Read More

CVE-2012-0265 (quicktime)
(05/16/2012) Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pathname for a file. Read More

For more information on any of our services, sign up here!



Silver Sponsor

DDI Managed Vulnerability Service to the Rescue!

DDI News!
  • DDI's Vulnerability Research Capabilities Lead to Another Zero-Day Disclosure — ACTi and Twonky™ Directory Traversal. Get the details.
  • Gartner Security & Risk Management Summit 2012: DDI prepares to exhibit at the premier gathering of enterprise IT security and risk management executives in Washington, D.C., June 11-14, 2012. Get more information.
  • Using Remote Desktop Protocol? Critical Vulnerability Could Mean Attack and Breach. Read about it here.
  • On April 20, in Austin, Texas, Digital Defense participates in the first of four different cyber security educational seminars hosted by Frost Insurance. DDI CEO, Larry Hurtado, shares his insights on why cyber security is a critical component of any Risk Management program. Larry Hurtado at the cyber security educational seminar hosted by Frost Frost Insurance Logo
  • DDI supports San Antonio Mayor Julian Castro in his Cyber Security Awareness efforts
    DDI supports San Antonio Mayor Julian Castro in his Cyber Security Awareness efforts
  • Digital Defense's Frontline™ 5.0 Spurs Rapid Vulnerability Remediation via Cloud Community Competition. Read more.
  • GVTC Engages Digital Defense To Safeguard Critical Networks LeWayne Ballard, Engineer Systems Compliance, GVTC, says DDI is helping to "streamline our vulnerability remediation lifecycle, resulting in a higher level of focus on our core business objectives." Read more.
  • DDI's Chief Technology Officer, Gordon MacKay, shows his medal of appreciation as a CIO panel participant at the Association of Information Technology Professionals 17th Annual National Collegiate Conference. DDI's Chief Technology Officer, Gordon MacKay, shows his medal of appreciation as a CIO panel participant at the Association of Information Technology Professionals 17th Annual National Collegiate Conference that was held in San Antonio, TX March 29-31. He was honored for speaking to a group of 650 college computer science students from all over the United States as they prepare to enter into the information technology industry.
  • DDI’s Vulnerability Research Team releases information regarding their discovery of the Axway SecureTransport '/icons/' Directory Traversal vulnerability with a HIGH severity rating.
    Click here for details.
  • Visit our new Vulnerability Research and Security Analytics Blog todayVisit our new Vulnerability Research and Security Analytics Blog today at DDI Labs.
DDI is a certified PCI ASV (Approved Scanning Vendor) Click here to view a demo of our Security Training Education and Awareness Module.


Click here to view the latest CVE vulnerabilities

Valid XHTML 1.0 Transitional Valid CSS!

This site has been optimized for FF2/3 and IE7/IE8. Site functionality may be reduced when utilized with other web browsing software.

Homeland Security Portal
The Homeland Security Portal is an interactive platform and informative arena where industry professionals can register, advertise and obtain publicly available information regarding new products, new technologies, industry news, case studies, investment opportunities and much more.