7-Zip.org Unknown

Notified:  February 25, 2015 Updated: February 25, 2015

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor References

    Adobe Unknown

    Notified:  February 25, 2015 Updated: February 25, 2015

    Status

    Unknown

    Vendor Statement

    No statement is currently available from the vendor regarding this vulnerability.

    Vendor References

      Amazon Unknown

      Notified:  February 25, 2015 Updated: February 25, 2015

      Status

      Unknown

      Vendor Statement

      No statement is currently available from the vendor regarding this vulnerability.

      Vendor References

        AMD Unknown

        Notified:  February 25, 2015 Updated: February 25, 2015

        Status

        Unknown

        Vendor Statement

        No statement is currently available from the vendor regarding this vulnerability.

        Vendor References

          AVG Anti-virus Software Not Affected

          Notified:  February 25, 2015 Updated: February 26, 2015

          Statement Date:   February 26, 2015

          Status

          Not Affected

          Vendor Statement

          No statement is currently available from the vendor regarding this vulnerability.

          Vendor Information

          AVG is not using NSIS for installation. The only thing that ties to NSIS is that AVG scanning engine can unpack and scan NSIS installation packages.

          CERT/CC Affected

          Updated:  March 20, 2015

          Status

          Affected

          Vendor Statement

          The installer for FOE is affected. To minimize the risk of installing FOE on an untrusted network use the installer on the ISO.

          Vendor Information

          We are not aware of further vendor information regarding this vulnerability.

          Vendor References

          Debian GNU/Linux Unknown

          Notified:  February 25, 2015 Updated: February 25, 2015

          Status

          Unknown

          Vendor Statement

          No statement is currently available from the vendor regarding this vulnerability.

          Vendor References

            DivX, Inc. Unknown

            Notified:  February 25, 2015 Updated: February 25, 2015

            Status

            Unknown

            Vendor Statement

            No statement is currently available from the vendor regarding this vulnerability.

            Vendor References

              Dropbox Affected

              Notified:  March 03, 2015 Updated: March 20, 2015

              Status

              Affected

              Vendor Statement

              Dropbox patched its service within hours of notification, and the fix went live on March 4, 2015. All Dropbox clients are safe, and there is no evidence to indicate the vulnerability was ever exploited. Users are not vulnerable and don't need to take any action.

              Vendor Information

              We are not aware of further vendor information regarding this vulnerability.

              Addendum

              Dropbox 3.2.9 addresses this issue by performing additional validation of downloaded files.

              Ericsson Unknown

              Notified:  February 25, 2015 Updated: February 25, 2015

              Status

              Unknown

              Vendor Statement

              No statement is currently available from the vendor regarding this vulnerability.

              Vendor References

                FreeRADIUS Unknown

                Notified:  February 25, 2015 Updated: February 25, 2015

                Status

                Unknown

                Vendor Statement

                No statement is currently available from the vendor regarding this vulnerability.

                Vendor References

                  Google Unknown

                  Notified:  February 25, 2015 Updated: February 25, 2015

                  Status

                  Unknown

                  Vendor Statement

                  No statement is currently available from the vendor regarding this vulnerability.

                  Vendor References

                    Intel Corporation Unknown

                    Notified:  February 25, 2015 Updated: February 25, 2015

                    Status

                    Unknown

                    Vendor Statement

                    No statement is currently available from the vendor regarding this vulnerability.

                    Vendor References

                      McAfee Unknown

                      Notified:  February 25, 2015 Updated: February 25, 2015

                      Status

                      Unknown

                      Vendor Statement

                      No statement is currently available from the vendor regarding this vulnerability.

                      Vendor References

                        Mozilla Unknown

                        Notified:  February 25, 2015 Updated: February 25, 2015

                        Status

                        Unknown

                        Vendor Statement

                        No statement is currently available from the vendor regarding this vulnerability.

                        Vendor References

                          Nokia Unknown

                          Notified:  February 25, 2015 Updated: February 25, 2015

                          Status

                          Unknown

                          Vendor Statement

                          No statement is currently available from the vendor regarding this vulnerability.

                          Vendor References

                            Nullsoft Affected

                            Notified:  January 31, 2011 Updated: February 25, 2015

                            Status

                            Affected

                            Vendor Statement

                            No statement is currently available from the vendor regarding this vulnerability.

                            Vendor Information

                            We are not aware of further vendor information regarding this vulnerability.

                            Vendor References

                            OpenVPN Technologies Unknown

                            Notified:  February 25, 2015 Updated: February 25, 2015

                            Status

                            Unknown

                            Vendor Statement

                            No statement is currently available from the vendor regarding this vulnerability.

                            Vendor References

                              Oracle Corporation Unknown

                              Notified:  February 25, 2015 Updated: February 25, 2015

                              Status

                              Unknown

                              Vendor Statement

                              No statement is currently available from the vendor regarding this vulnerability.

                              Vendor References

                                Pidgin Unknown

                                Notified:  February 25, 2015 Updated: February 25, 2015

                                Status

                                Unknown

                                Vendor Statement

                                No statement is currently available from the vendor regarding this vulnerability.

                                Vendor References

                                  Ubuntu Unknown

                                  Notified:  February 25, 2015 Updated: February 25, 2015

                                  Status

                                  Unknown

                                  Vendor Statement

                                  No statement is currently available from the vendor regarding this vulnerability.

                                  Vendor References

                                    Unify Inc Not Affected

                                    Notified:  February 25, 2015 Updated: March 23, 2015

                                    Status

                                    Not Affected

                                    Vendor Statement

                                    Unify is using the NSIS in parts of its product portfolio, but only in the context of its own SW provisioning and update processes, that provide appropriate integrity protection. The Inetc plugin of NSIS is not used.

                                    Vendor Information

                                    We are not aware of further vendor information regarding this vulnerability.

                                    VideoLAN Unknown

                                    Notified:  February 25, 2015 Updated: February 25, 2015

                                    Status

                                    Unknown

                                    Vendor Statement

                                    No statement is currently available from the vendor regarding this vulnerability.

                                    Vendor References

                                      Wireshark Unknown

                                      Notified:  February 25, 2015 Updated: February 25, 2015

                                      Status

                                      Unknown

                                      Vendor Statement

                                      No statement is currently available from the vendor regarding this vulnerability.

                                      Vendor References

                                        Xen Unknown

                                        Notified:  February 25, 2015 Updated: February 25, 2015

                                        Status

                                        Unknown

                                        Vendor Statement

                                        No statement is currently available from the vendor regarding this vulnerability.

                                        Vendor References

                                          Yahoo, Inc. Unknown

                                          Notified:  February 25, 2015 Updated: February 25, 2015

                                          Status

                                          Unknown

                                          Vendor Statement

                                          No statement is currently available from the vendor regarding this vulnerability.

                                          Vendor References

                                            View all 26 vendors View less vendors