{"uuid": "e93b6f4d-1006-4b43-a43c-ddb71fce4aff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2010-0192", "type": "seen", "source": "https://t.me/tengkorakcybercrewz/810", "content": "roaches to define what a 'good fuzzer' is, but real users are more likely to be interested in whether a tool has found something useful. We do not have anyone at OUSPG running tests or even developing Radamsa full-time, but we obviously do make occasional test-runs, both to assess the usefulness of the tool, and to help improve robustness of the target programs. For the test-runs we try to select programs that are mature, useful to us, widely used, and, preferably, open source and/or tend to process data from outside sources.\n\nThe list below has some CVEs we know of that have been found by using Radamsa. Some of the results are from our own test runs, and some have been kindly provided by CERT-FI from their tests and other users. As usual, please note that CVE:s should be read as 'product X is now more robust (against Y)'.\nCVE program credit CVE-2007-3641 libarchive OUSPG CVE-2007-3644 libarchive OUSPG CVE-2007-3645 libarchive OUSPG CVE-2008-1372 bzip2 OUSPG CVE-2008-1387 ClamAV OUSPG CVE-2008-1412 F-Secure OUSPG CVE-2008-1837 ClamAV OUSPG CVE-2008-6536 7-zip OUSPG CVE-2008-6903 Sophos Anti-Virus OUSPG CVE-2010-0001 Gzip integer underflow in unlzw CVE-2010-0192 Acroread OUSPG CVE-2010-1205 libpng OUSPG CVE-2010-1410 Webkit OUSPG CVE-2010-1415 Webkit OUSPG CVE-2010-1793 Webkit OUSPG CVE-2010-2065 libtiff found by CERT-FI CVE-2010-2443 libtiff found by CERT-FI CVE-2010-2597 libtiff found by CERT-FI CVE-2010-2482 libtiff found by CERT-FI CVE-2011-0522 VLC found by Harry Sintonen CVE-2011-0181 Apple ImageIO found by Harry Sintonen CVE-2011-0198 Apple Type Services found by Harry Sintonen CVE-2011-0205 Apple ImageIO found by Harry Sintonen CVE-2011-0201 Apple CoreFoundation found by Harry Sintonen CVE-2011-1276 Excel found by Nicolas Gr\u00e9goire of Agarri CVE-2011-1186 Chrome OUSPG CVE-2011-1434 Chrome OUSPG CVE-2011-2348 Chrome OUSPG CVE-2011-2804 Chrome/pdf OUSPG CVE-2011-2830 Chrome/pdf OUSPG CVE-2011-2839 Chrome/pdf OUSPG CVE-2011-2861 Chrome/pdf OUSPG CVE-2011-3146 librsvg found by Sauli Pahlman CVE-2011-3654 Mozilla Firefox OUSPG CVE-2011-3892 Theora OUSPG CVE-2011-3893 Chrome OUSPG CVE-2011-3895 FFmpeg OUSPG CVE-2011-3957 Chrome OUSPG CVE-2011-3959 Chrome OUSPG CVE-2011-3960 Chrome OUSPG CVE-2011-3962 Chrome OUSPG CVE-2011-3966 Chrome OUSPG CVE-2011-3970 libxslt OUSPG CVE-2012-0449 Firefox found by Nicolas Gr\u00e9goire of Agarri CVE-2012-0469 Mozilla Firefox OUSPG CVE-2012-0470 Mozilla Firefox OUSPG CVE-2012-0457 Mozilla Firefox OUSPG CVE-2012-2825 libxslt found by Nicolas Gr\u00e9goire of Agarri CVE-2012-2849 Chrome/GIF OUSPG CVE-2012-3972 Mozilla Firefox found by Nicolas Gr\u00e9goire of Agarri CVE-2012-1525 Acrobat Reader found by Nicolas Gr\u00e9goire of Agarri CVE-2012-2871 libxslt found by Nicolas Gr\u00e9goire of Agarri CVE-2012-2870 libxslt found by Nicolas Gr\u00e9goire of Agarri CVE-2012-2870 libxslt found by Nicolas Gr\u00e9goire of Agarri CVE-2012-4922 tor found by the Tor project CVE-2012-5108 Chrome OUSPG via NodeFuzz CVE-2012-2887 Chrome OUSPG via NodeFuzz CVE-2012-5120 Chrome OUSPG via NodeFuzz CVE-2012-5121 Chrome OUSPG via NodeFuzz CVE-2012-5145 Chrome OUSPG via NodeFuzz CVE-2012-4186 Mozilla Firefox OUSPG via NodeFuzz CVE-2012-4187 Mozilla Firefox OUSPG via NodeFuzz CVE-2012-4188 Mozilla Firefox OUSPG via NodeFuzz CVE-2012-4202 Mozilla Firefox OUSPG via NodeFuzz CVE-2013-0744 Mozilla Firefox OUSPG via NodeFuzz CVE-2013-1691 Mozilla Firefox OUSPG CVE-2013-1708 Mozilla Firefox OUSPG CVE-2013-4082 Wireshark found by cons0ul CVE-2013-1732 Mozilla Firefox OUSPG CVE-2014-0526 Adobe Reader X/XI Pedro Ribeiro (pedrib@gmail.com) CVE-2014-3669 PHP CVE-2014-3668 PHP CVE-2014-8449 Adobe Reader X/XI Pedro Ribeiro (pedrib@gmail.com) CVE-2014-3707 cURL Symeon Paraschoudis CVE-2014-7933 Chrome OUSPG CVE-2015-0797 Mozilla Firefox OUSPG CVE-2015-0813 Mozilla Firefox OUSPG CVE-2015-1220 Chrome OUSPG CVE-2015-1224 Chrome OUSPG CVE-2015-2819 Sybase SQL vah_13 (ERPScan) CVE-2015-2820 SAP Afaria vah_13 (ERPScan) CVE-2015-7091 Apple QuickTime Pedro Ribeiro (pedrib@gmail.com) CVE-2015-8330 SAP PCo agent Mathieu G[...]", "creation_timestamp": "2024-03-25T14:38:09.000000Z"}