Affiliation/Organization: iDefense Labs


Time to Patch Stats

For vulnerabilities disclosed through this affiliation where we have sufficient data to calculate the time to patch (77 vulns), the following statistics apply:

Min Time To Patch:10 days
Avg Time To Patch:151 days
Max Time To Patch:597 days

Other Affiliations

Creditees Affiliated with iDefense Labs have also affiliated with:

iDefense Labs VCP (3)
TippingPoint DVLabs (1)

Website: http://www.idefense.com/

Creditees currently or formerly associated with iDefense Labs (11):
(ordered by association date)

Known SinceNameVulns Through Affiliation
2003-06-11Michael Sutton2
2004-02-11Greg MacManus38
2004-08-24iDefense Labs30
2005-06-22Pedram Amini1
2006-10-21Joshua J. Drake21
2006-12-12Sean Larsson50
2007-02-22David D. Rude II1
2007-05-08Jun Mao18
2008-01-15McSlibin3
2009-06-09Joshua Drake1
2009-06-09Ryan Smith4

Disclosed Vulnerabilities (161):

Discl. DateOSVDB IDCVE IDCrediteesTitle
2010-03-09 62818 2010-0258 Sean Larsson
 Microsoft Office Excel Sheet Object Type Confusion Arbitrary Code Execution
2010-03-09 62819 2010-0260 Sean Larsson
 Microsoft Office Excel MDXTUPLE Record Handling Overflow
2010-03-09 62820 2010-0261 Sean Larsson
 Microsoft Office Excel Workbook Globals Stream MDXSET Record Handling Overflow
2010-03-09 62821 2010-0262 Sean Larsson
 Microsoft Office Excel FNGROUPNAME Record Handling Memory Corruption
2010-03-04 62743 2009-3032 Joshua J. Drake
 Autonomy KeyView SDK kvolefio.dll OLE File Handling Overflow
2009-12-08 60834 2009-2506 Jun Mao
Sean Larsson
 Microsoft WordPad / Office Text Converters Word97 File Handling Memory Corruption
2009-11-10 59860 2009-3129 Anonymous
Sean Larsson
 Microsoft Office Excel BIFF File FEATHEADER cbHdrData Size Element Handling Memory Corruption
2009-11-10 59857 2009-3135 Jun Mao
 Microsoft Office Word Document Malformed File Information Block (FIB) Parsing Memory Corruption
2009-08-25 57334 2009-3037 Joshua J. Drake
 Autonomy Keyview XLS Viewer (xlssr.dll) XLS File SST Record Handling Overflow
2009-08-11 56910 2009-2494 Ryan Smith
 Microsoft Visual Studio Active Template Library (ATL) Header Mismatch Remote Code Execution
2009-08-11 56916 2009-1534 Sean Larsson
 Microsoft Office Web Components HTMLURL Parameter ActiveX Spreadsheet Object Handling Overflow
2009-07-30 56776 2009-1868 Jun Mao
 Adobe Multiple Products URL Parsing Heap-based Overflow
2009-07-28 56698 2009-2493 Ryan Smith
 Microsoft Visual Studio Active Template Library (ATL) Data Stream Object Instantiation Remote Code Execution
2009-07-28 56699 2009-2495 Ryan Smith
 Microsoft Visual Studio Active Template Library (ATL) String Manipulation Arbitrary Memory Disclosure
2009-06-09 56113 2009-1856 Jun Mao
Ryan Smith
 Adobe Reader / Acrobat PDF File FlateDecode Filter Parameter Handling Unspecified Overflow
2009-06-09 54937 2009-1138 Joshua J. Drake
 Microsoft Windows Active Directory Crafted LDAP(S) Request Hexdecimal DN AttributeValue Handling Arbitrary Code Execution
2009-06-09 54957 2009-0561 Sean Larsson
Joshua Drake
 Microsoft Office Excel File SST Record Handling String Parsing Overflow
2009-06-09 54932 2009-0228 Jun Mao
 Microsoft Windows Print Spooler win32spl.dll EnumeratePrintShares Function Remote Overflow
2009-05-12 54394 2009-0221 Sean Larsson
 Microsoft Office PowerPoint Multiple Record Types Handling Overflow
2009-05-12 54390 2009-0224 Sean Larsson
 Microsoft Office PowerPoint BuildList Record Parsing Memory Corruption Arbitrary Code Execution
2009-05-12 54392 2009-1130 Sean Larsson
wushi
ling
 Microsoft Office PowerPoint Unspecified Crafted File Handling Heap Corruption
2009-04-15 53748 2009-1009 Joshua J. Drake
 Oracle Outside In Technology Microsoft Excel Spreadsheet Record Handling Remote Overflow (2009-1009)
2009-04-15 53749 2009-1010 Joshua J. Drake
 Oracle Outside In Technology Microsoft Office Spreadsheet Record Handling Overflow (2009-1010)
2009-04-15 53750 2009-1011 Joshua J. Drake
 Oracle Outside In Technology Microsoft Office File Optional Data Stream Parsing Overflow
2009-04-14 53664 2009-0235 Jun Mao
Sean Larsson
 Microsoft WordPad Word 97 Text Converter File Handling Overflow
2009-03-23 53169 2009-1099 Sean Larsson
 Sun Java JDK / JRE Type1 Font Glyph Description Handling Overflow
2009-03-18 53644 2009-0928 Sean Larsson
 Adobe Acrobat Reader JBIG2 Encoded Stream Unspecified Table Handling Overflow
2009-01-13 52001 2009-0176
2009-0219		 Sean Larsson
 BlackBerry Products PDF Distiller Multiple Vulnerabilities
2008-12-09 50610 2008-4261 Jun Mao
 Microsoft IE EMBED Tag File Name Extension Overflow
2008-12-09 50561 2008-2249 Jun Mao
Anonymous
 Microsoft Windows GDI WMF Image Parsing Integer Math Overflow
2008-12-03 50516 2008-5356 Sean Larsson
 Sun Java JDK / JRE TrueType Font Processing Heap Overflow
2008-11-04 50247 2008-4812 Greg MacManus
 Adobe Reader / Acrobat Type 1 Font Handling Arbitrary Remote Code Execution
2008-10-14 49077 2008-3477 Anonymous
Jun Mao
Lionel d'Hauenens
 Microsoft Excel Calendar Object Validation VBA Performance Cache Processing Arbitrary Code Execution
2008-10-13 49283 2008-4008 Sean Larsson
Joshua J. Drake
 Oracle BEA WebLogic Server Plugins for Apache Remote Transfer-Encoding Overflow
2008-09-09 47965 2007-5348 Greg MacManus
 Microsoft Multiple Products GDI+ VML Gradient Size Handling Overflow
2008-08-12 47395 2008-2245 Jun Mao
 Microsoft Windows Image Color Management System (MSCMS) mscms.dll InternalOpenColorProfile Function ICM Image File Handling Overflow
2008-06-10 46052 2008-2152 Sean Larsson
 OpenOffice.org (OOo) rtl_allocateMemory() Function Crafted Document Handling Overflow
2008-06-03 46019 2008-2405 Anonymous
Joshua J. Drake
 Sun Java Active Server Pages (ASP) Server Unspecified Applications Arbitrary Command Execution
2008-05-13 45032 2008-1434 Jun Mao
 Microsoft Word Document Malformed CSS Handling Memory Corruption Arbitrary Code Execution
2008-04-17 44469 2007-5745 Sean Larsson
Anonymous
 OpenOffice.org (OOo) Quattro Pro (QPRO) File Multiple Record Handling Overflow
2008-04-15 44421 2007-5664 Joshua J. Drake
 IBM DB2 Universal Database Administration Server (DAS) db2dasrrm Symlink Arbitrary File Overwrite
2008-04-08 44213 2008-1083 Jun Mao
 Microsoft Windows GDI (gdi32.dll) EMF File Handling Multiple Overflows
2008-03-11 42722 2008-0111 Greg MacManus
 Microsoft Excel BIFF8 Spreadsheet DVAL Record Handling Arbitrary Code Execution
2008-03-11 42710 2008-0110 Greg MacManus
 Microsoft Outlook mailto: URI Handling Arbitrary Command Execution
2008-03-10 43083 2008-0306 Joshua J. Drake
 SAP MaxDB sdbstarter Unspecified Local Privilege Escalation
2008-02-12 41538 2007-6148 Sean Larsson
 Adobe Flash Media / Connect Enterprise Edge Server Crafted Real Time Message Protocol (RTMP) Requests Remote Code Execution
2008-02-07 41495 2007-5659 Greg MacManus
 Adobe Reader / Acrobat Collab.collectEmailInfo() Method Overflow
2008-02-07 41494 2007-5663 Greg MacManus
 Adobe Reader / Acrobat EScript.api Plug-in Crafted PDF Arbitrary Code Execution
2008-02-07 41493 2007-5666 Greg MacManus
 Adobe Reader / Acrobat Search Path Subversion Security Provider Library Local Privilege Escalation
2008-01-15 41412 2007-5655 McSlibin
Sean Larsson
 TIBCO SmartSockets Multiple Products Crafted Pointer Request Remote Code Execution
2008-01-15 41413 2007-5656 McSlibin
Sean Larsson
 TIBCO SmartSockets Multiple Products Crafted Loop Operations Remote Code Execution
2008-01-15 41414 2007-5657 Sean Larsson
McSlibin
 TIBCO SmartSockets Multiple Products Crafted Request Pointer Offset Arbitrary Code Execution
2008-01-15 40896 2008-0032 Jun Mao
 Apple QuickTime Movie File Malformed Macintosh Resource Record Heap Corruption Arbitrary Code Execution
2007-12-17 40731 2007-3876 Sean Larsson
 Apple Mac OS X SMB mount_smbfs -W Parameter Local Overflow
2007-12-11 39126 2007-3901 Jun Mao
 Microsoft Windows DirectX SAMI File Parsing Arbitrary Code Execution
2007-11-15 40681 2007-4269 Sean Larsson
 Apple Mac OS X Networking Component AppleTalk Session Protocol (ASP) Message Handling Overflow
2007-11-14 40683 2007-4268 Sean Larsson
 Apple Mac OS X Networking Component AppleTalk Message Handling Local Overflow
2007-11-02 40836 2007-3880 Sean Larsson
 Sun Remote Services (SRS) Proxy Core Package srsexec Local Format String
2007-10-30 40402 2007-4623 Joshua J. Drake
 IBM AIX bellmail sendrmt Function m Command Local Overflow
2007-10-30 40405 2007-4513 Sean Larsson
 IBM AIX lqueryvg -p Argument Local Overflow
2007-10-30 40406 2007-4513 Sean Larsson
 IBM AIX lquerypv -V Argument Local Overflow
2007-10-30 40407 2007-4217 Joshua J. Drake
 IBM AIX ftp domacro Function Macro Argument Local Privilege Escalation
2007-10-09 37631 2007-3897 Greg MacManus
 Microsoft Windows Malformed NNTP Response Remote Memory Corruption
2007-10-02 37721 2007-4568
2007-4989		 Sean Larsson
 X.Org X Font Server (xfs) build_range Function Overflow
2007-10-02 37722 2007-4990 Sean Larsson
 X.Org X Font Server (xfs) swap_char2b Function Arbitrary Code Execution
2007-09-27 41363 2007-5082 Anonymous
Sean Larsson
Aaron Portnoy
 BrightStor Hierarchical Storage Manager (HSM) Unspecified CsAgent Service Command Crafted Opcode Multiple Remote Overflows
2007-09-27 41364 2007-5083 Sean Larsson
 BrightStor Hierarchical Storage Manager (HSM) Unspecified CsAgent Service Command Remote Overflow
2007-09-20 41353 2007-5003 Sean Larsson
Anonymous
Matt Oh
Andre Derek Protas
Yuji Ukai
 CA BrightStor ARCserve Backup for Laptops & Desktops rxRPC.dll rxrLogin Command Remote Overflow
2007-08-21 39751 2007-4218
2007-4219		 Jun Mao
Code Audit Labs
Anonymous
 Trend Micro ServerProtect for Windows (SpntSvc.exe) StRpcSrv.dll Multiple Function Remote Overflow
2007-08-21 39752 2007-4218 Code Audit Labs
Jun Mao
Anonymous
 Trend Micro ServerProtect for Windows (SpntSvc.exe) Stcommon.dll Multiple Function Remote Overflow
2007-08-16 40994 2007-4270 Anonymous
Joshua J. Drake
 IBM DB2 Universal Database Multiple Unspecified Symlink Local Privilege Escalation
2007-08-16 40989 2007-4272 Joshua J. Drake
Anonymous
 IBM DB2 Universal Database Crafted Umask Arbitrary File Creation
2007-08-16 40990 2007-4272 Joshua J. Drake
Anonymous
 IBM DB2 Universal Database /etc/ld.so.preload Unspecified Arbitrary File Creation
2007-08-16 40991 2007-4272 Joshua J. Drake
Anonymous
 IBM DB2 Universal Database cron Data File Location Unspecified Arbitrary File Creation
2007-08-16 40992 2007-4272 Joshua J. Drake
Anonymous
 IBM DB2 Universal Database db2licd (db2licm) Unspecified Arbitrary File Creation
2007-08-07 37562 2007-4241 iDefense Labs
 HP-UX Controller for Cisco Local Director ldcconn Remote Overflow
2007-08-07 39750 2007-4218 Code Audit Labs
Jun Mao
Anonymous
Anonymous
 Trend Micro ServerProtect for Windows Agent Service RPCFN_CopyAUSrc Function Remote Overflow
2007-07-19 38017 2007-3670 Greg MacManus
 Microsoft IE with Mozilla Firefox Cross-browser Command Execution
2007-07-09 42139 2006-4519 Sean Larsson
 GIMP DICOM Plugin Crafted Image Length Value Handling Overflow
2007-07-09 42140 2006-4519 Sean Larsson
 GIMP PNM Plugin Crafted Image Length Value Handling Overflow
2007-07-09 42141 2006-4519 Sean Larsson
 GIMP PSD Plugin Crafted Image Length Value Handling Overflow
2007-07-09 42142 2006-4519 Sean Larsson
 GIMP PSP Plugin Crafted Image Length Value Handling Overflow
2007-07-09 42143 2006-4519 Sean Larsson
 GIMP Sun RAS Plugin Crafted Image Length Value Handling Overflow
2007-07-09 42144 2006-4519 Sean Larsson
 GIMP XBM Plugin Crafted Image Length Value Handling Overflow
2007-07-09 42145 2006-4519 Sean Larsson
 GIMP XWD Plugin Crafted Image Length Value Handling Overflow
2007-06-13 35379 2006-4168 Sean Larsson
 libexif EXIF Tagged Image exif_data_load_data_entry Function Overflow
2007-06-01 36102 2007-1593 CIRT.DK
iDefense Labs
 Symantec Veritas Storage Foundation Veritas Volume Replicator (VVR) Crafted Packet Remote DoS
2007-05-08 34388 2007-1202 Anonymous
Jun Mao
 Microsoft Word RTF Rich Text Properties Parsing Remote Code Execution
2007-05-08 34395 2007-1214 Greg MacManus
 Microsoft Excel Filter Record Handling Remote Code Execution
2007-04-27 35505 2007-1744 Greg MacManus
 VMware Workstation Shared Folders Feature Host System Arbitrary File Write
2007-04-17 34993 2007-2152 iDefense Labs
 McAfee VirusScan Enterprise On-Access Scanner Unicode Filename Overflow
2007-04-10 34010 2007-1204 Greg MacManus
 Microsoft Windows XP UPnP Remote Memory Corruption
2007-04-10 34930 2007-1874 Sean Larsson
 Adobe ColdFusion MX on Unix Permission Weakness Local Privilege Escalation
2007-04-03 34098 2007-1211 Greg MacManus
 Microsoft Windows GDI Functions Windows Metafile (WMF) Handling DoS
2007-04-03 34110 2007-1003 Sean Larsson
 X.Org X11 XC-MISC Extension ProcXCMiscGetXIDList Function ALLOCATE_LOCAL Overflow
2007-04-03 34109 2007-1352 Greg MacManus
 X.Org X11 libXfont fonts.dir File FontFileInitTable Function Overflow
2007-04-03 34917 2007-1351 Greg MacManus
 FreeType bdfReadCharacters Function BDF Font Handling Overflow
2007-04-03 34918 2007-1351 Greg MacManus
 X.Org X11 libXfont bdfReadCharacters Function BDF Font Handling Overflow
2007-03-30 34897 2007-1993 iDefense Labs
 HP-UX Portable File System (PFS) pfs_mountd.rpc Remote Code Execution
2007-03-16 33315 2007-0002
2007-1466		 Anonymous
Sean Larsson
 WordPerfect Document importer/exporter (libwpd) Crafted File Handling Multiple Function Overflow
2007-02-22 40971 2007-1088 Joshua J. Drake
 IBM DB2 Universal Database Unspecified Local Overflow
2007-02-22 40970 2007-1087 Joshua J. Drake
 IBM DB2 Universal Database Unspecified Input Handling Local Environment Variable Overflow
2007-02-22 40969 2007-1086 Joshua J. Drake
 IBM DB2 Universal Database Unspecified Local Arbitrary File Manipulation
2007-02-22 33479 2007-1083 David D. Rude II
 VeriSign ConfigChk ActiveX VSCnfChk.dll VerCompare Method Overflow
2007-02-13 36398 2007-3341 Greg MacManus
 Microsoft IE FTP Unspecified Remote Memory Address Disclosure
2007-02-13 31892 2007-0217 Greg MacManus
 Microsoft IE FTP Server Response Parsing Memory Corruption
2007-01-26 32993 2007-0619 Sean Larsson
 CHMlib Crafted Page Block Length Memory Corruption
2007-01-09 31258 2007-0031 Greg MacManus
 Microsoft Excel Palette Record Handling Overflow
2007-01-09 31257 2007-0030 Greg MacManus
 Microsoft Excel Column Record Heap Corruption Remote Code Execution
2007-01-09 32086 2006-6103 Sean Larsson
 Multiple Vendor DBE Extension ProcDbeSwapBuffers Function Memory Corruption
2007-01-09 32085 2006-6102 Sean Larsson
 Multiple Vendor DBE Extension ProcDbeGetVisualInfo Function Overflow
2007-01-09 32084 2006-6101 Sean Larsson
 Multiple Vendor Render Extension ProcRenderAddGlyphs Function Overflow
2006-12-12 30842 2006-6495 Sean Larsson
 Solaris ld.so doprf() Function Local Overflow
2006-11-26 30691 2006-4518 Michael Sutton
 WinGate Crafted DNS Compressed Name Pointer DoS
2006-10-21 29996 2006-4510 Joshua J. Drake
 Novell eDirectory LDAP Service evtFilteredMonitorEventsRequest Function Remote Code Execution
2006-06-13 26430 2006-0025 Greg MacManus
 Microsoft Windows Media Player PNG Processing Overflow
2006-02-07 22967 2005-1528 iDefense Labs
 QNX Neutrino RTOS crttrap LD_LIBRARY_PATH Subversion Privilege Escalation
2005-10-20 20153 2005-2926 iDefense Labs
 SCO OpenServer backupsh Local Overflow
2005-10-20 20154 2005-2926 iDefense Labs
 SCO OpenServer authsh Local Overflow
2005-10-20 20155 2005-2927 iDefense Labs
 SCO UnixWare ppp Local Overflow
2005-09-26 19695 2005-2710 iDefense Labs
 RealPlayer invalid-handle Error Message Format String
2005-09-26 19696 2005-2710 iDefense Labs
 RealNetworks Helix Player invalid-handle Error Message Format String
2005-09-13 19386 2005-2912 Greg MacManus
 Linksys WRT54G POST Request Malformed Content Length DoS
2005-09-13 19387 2005-2916 Greg MacManus
 Linksys WRT54G upgrade.cgi Arbitrary Configuration Upload
2005-09-13 19388 2005-2916 Greg MacManus
 Linksys WRT54G restore.cgi Arbitrary Configuration Upload
2005-09-13 19389 2005-2799 Greg MacManus
 Linksys WRT54G apply.cgi POST Request Overflow
2005-09-13 19390 2005-2915
2005-2914		 Greg MacManus
 Linksys WRT54G ezconfig.asp Encryption Weakness Authentication Issue
2005-09-01 19152 2005-2020 iDefense Labs
 3Com Network Supervisor Traversal Arbitrary File Access
2005-07-05 17740 2005-1625 iDefense Labs
 Adobe Acrobat Reader UnixAppOpenFilePerform() Function /Filespec Tag Processing Overflow
2005-06-22 17627 2005-0771 Pedram Amini
 VERITAS Backup Exec Server Unauthenticated Remote Registry Access
2005-06-14 17304 2005-1212 iDefense Labs
 Microsoft Windows Interactive Training .cbo File User Field Overflow
2005-05-24 16804 2005-1255 Anonymous
iDefense Labs
 Ipswitch IMail IMAP LOGIN username Remote Overflow
2005-05-24 16806 2005-1256 iDefense Labs
 Ipswitch IMail IMAP STATUS Command Mailbox Name Overflow
2005-03-02 14389 2005-0581
2005-0582		 Greg MacManus
 CA License Server/Client Multiple Command Remote Overflow
2005-03-02 14323 2005-0583 Greg MacManus
 CA License Client PUTOLF Traversal Arbitrary File Creation
2005-02-11 13769 2005-0114 iDefense Labs
 ZoneAlarm vsdatant.sys NtConnectPort() Hook Invalid Pointer Dereference Remote DoS
2005-02-10 13699 2005-0262 iDefense Labs
 IBM AIX ipl_varyon -d Parameter Local Overflow
2005-02-10 13697 2005-0263 iDefense Labs
 IBM AIX netpmon -O Parameter Local Overflow
2005-02-10 13698 2005-0261 iDefense Labs
 IBM AIX lspath Arbitrary File Fragment Access
2005-02-08 13638 2005-0250 iDefense Labs
 IBM AIX auditselect Format String Local Privilege Escalation
2005-02-07 13587 2005-0240 iDefense Labs
 IBM AIX chdev Format String Local Privilege Escalation
2005-01-13 12915 2005-0113 iDefense Labs
 IRIX inpview Environment Variable Local Privilege Escalation
2004-12-21 12553 2004-1332 iDefense Labs
 HP-UX FTP Server Debug Logging Remote Overflow
2004-12-20 12530 2004-1028 iDefense Labs
 IBM AIX chcod Path Subversion Privilege Escalation
2004-12-20 12531 2004-1054 iDefense Labs
 IBM AIX invscout Path Subversion Privilege Escalation
2004-12-20 12615 2004-1054 iDefense Labs
 IBM AIX diag_exec Path Subversion Privilege Escalation
2004-12-20 12616 2004-1054 iDefense Labs
 IBM AIX lsmcode Path Subversion Privilege Escalation
2004-12-16 12422 2004-1154 Greg MacManus
 Samba smbd Security Descriptor Parsing Remote Overflow
2004-12-15 12384 2004-1153 Greg MacManus
 Adobe Reader .etd File Multiple Field Format String
2004-12-14 12397 2004-1152 Greg MacManus
 Adobe Acrobat Reader mailListIsPdf() Function Remote Overflow
2004-09-27 10368 2004-0828 iDefense Labs
 IBM RSCT ctstrtcasd -f Option Arbitrary File Corruption
2004-08-25 9186 2003-0834 iDefense Labs
 CDE libDtHelp LOGNAME Local Overflow
2004-08-24 9145 2004-0800 iDefense Labs
 CDE dtmail Local Format String Privilege Escalation
2004-08-12 8654 2004-0630 Greg MacManus
 Adobe Acrobat UUEncode Shell Metacharacter Command Execution
2004-07-12 7766 2004-0632 Greg MacManus
 Adobe Acrobat Reader File Extension Overflow
2004-06-10 6851 2004-0550 Greg MacManus
 RealPlayer embd3260.dll URL Parsing Overflow
2004-04-14 5362 2004-0109 Greg MacManus
 Linux Kernel ISO9660 Symbolic Link Overflow Privilege Escalation
2004-04-05 4960 2004-0377 Greg MacManus
 Perl / ActivePerl win32_stat Function Overflow
2004-02-11 3905 2004-0083 Greg MacManus
 XFree86 dirfile.c ReadFontAlias Function Overflow
2004-02-11 8341 2004-0084 Greg MacManus
 XFree86 CopyISOLatin1Lowered Function Overflow
2003-06-11 10064 2003-0419 Michael Sutton
 Barricade SMC7004VWBR Router PPTP Port Malformed Packet DoS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2010 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use