DeploySafe Addressed Vulnerabilities

DeploySafe

What We’re Looking For

Matasano has over 50 combined years of experience finding and resolving vulnerabilities. Matasano has uncovered, documented, and secured patches for a myriad of flaws in diverse targets, including:

  • Race conditions, synchronization, and concurrency flaws

  • Exploitable stack and heap overflows

  • Integer overflows and calculation flaws

  • Authentication bypass and control-flow flaws

  • Attacks on middleware and naming/location components

  • “Clientside” attacks in untested client and desktop code

  • Cryptographic key exchange vulnerabilities

  • Trivially breakable proprietary cryptosystems

  • Insecure secret storage (including forgotten keys embedded in binaries)

  • Resource exhaustion vulnerabilities

  • Weak authentication protocols and session management

  • Privilege escalation and authorization vulnerabilities

  • Metacharacter vulnerabilities, such as SQL Injection and network path expansion

  • Vulnerabilities in file processors, archivers, and compression tools

  • Reliance on insecure, out-of-date third-party tools and libraries

Who We Are

Since 1994, Matasano researchers have had founding roles in the first security research labs, discovered new classes of vulnerabilities, secured operating systems, and shipped large software projects. We’ve been behind some of the first breaks in SAN technology, virtualization, and financial protocols. Our work has been featured in Network World, eWeek, Forbes, Macworld, Wired, and the Washington Post, and at conferences ranging from Black Hat to Gartner.