Home / 2012 Advisories Archive

2012 Advisories Archive

Severity	Date Published	Check Point Reference	Source	Description
Critical	27 Feb 2012	CPAI-2012-068	CVE-2012-0767	Adobe Flash Player ActiveX Control Cross-Site Scripting (APSB12-03; CVE-2012-0767)
Critical	27 Feb 2012	CPAI-2012-067	CVE-2012-0756	Adobe Flash Player Insecure Library Loading (APSB12-03; CVE-2012-0756)
High	27 Feb 2012	CPAI-2012-062	CVE-2010-4221	ProFTPD FTP Server TELNET_IAC Stack Buffer Overflow (CVE-2010-4221)
High	20 Feb 2012	CPAI-2012-065	CVE-2006-0025	Microsoft Windows Media Player PNG Chunk Handling Code Execution (CVE-2006-0025)
High	14 Feb 2012	CPAI-2012-050	CVE-2012-0012	Internet Explorer Null Byte Information Disclosure (MS12-010; CVE-2012-0012)
High	14 Feb 2012	CPAI-2012-049	CVE-2012-0145	Microsoft SharePoint wizardlist.aspx Cross-Site Scripting (MS12-011; CVE-2012-0145)
High	14 Feb 2012	CPAI-2012-048	CVE-2012-0144	Microsoft SharePoint themeweb.aspx Cross-Site Scripting (MS12-011; CVE-2012-0144)
High	14 Feb 2012	CPAI-2012-047	CVE-2012-0017	Microsoft SharePoint inplview.aspx Cross-Site Scripting (MS12-011; CVE-2012-0017)
Medium	14 Feb 2012	CPAI-2012-032		Broadwin WebAccess Client Bwocxrun ActiveX OcxSpool Format String
High	19 Mar 2012	CPAI-2012-106	CVE-2011-3545	Oracle Java Array Index Out-of-Bounds Code Execution (CVE-2011-3545)
Critical	19 Mar 2012	CPAI-2012-105	CVE-2011-3490	Measuresoft ScadaPro xf Command Execution (CVE-2011-3490)
Medium	19 Mar 2012	CPAI-2012-104		Viscom Software Image Viewer ActiveX Buffer Overflow
Medium	19 Mar 2012	CPAI-2012-103		Web Servers Multiple IMAP Initial Connection Requests Denial of Service
Medium	19 Mar 2012	CPAI-2012-102		Executable File Embedded in JPEG File Vulnerabilities
High	19 Mar 2012	CPAI-2012-100	CVE-2011-3162	HP Data Protector Multiple Products FinishedCopy SQL Injection (CVE-2011-3162)
High	19 Mar 2012	CPAI-2012-098	CVE-2011-2453	Adobe Flash Player SWF Tag Size Mismatch Vulnerabilities
Critical	12 Mar 2012	CPAI-2012-089	CVE-2012-0768	Adobe Flash Player Stage3D NULL Pointer Dereference (APSB12-05; CVE-2012-0768)
Critical	12 Mar 2012	CPAI-2012-088	CVE-2012-0769	Adobe Flash Player ActionScript3 Out Of Bounds Integer Overflow (APSB12-05; CVE-2012-0769)
High	12 Mar 2012	CPAI-2012-087	CVE-2012-0006	Microsoft DNS Server Denial of Service (MS12-017; CVE-2012-0006)
High	12 Mar 2012	CPAI-2012-086	CVE-2012-0016	Microsoft Expression Design Insecure Library Loading (MS12-022; CVE-2012-0016)
High	12 Mar 2012	CPAI-2012-085	CVE-2012-0008	Microsoft Visual Studio Add-In Insecure Library Loading (MS12-021; CVE-2012-0008)
High	5 Mar 2012	CPAI-2012-080	CVE-2011-3156	HP Data Protector Multiple Products LogClientInstallation SQL Injection (CVE-2011-3156)
Medium	5 Mar 2012	CPAI-2012-079	CVE-2011-1508	Microsoft Publisher Function Pointer Overwrite (MS11-091; CVE-2011-1508)
High	5 Mar 2012	CPAI-2012-077	CVE-2011-3368	Apache HTTPD mod_proxy Security Bypass (CVE-2011-3368)
High	5 Mar 2012	CPAI-2012-071	CVE-2012-0753	Adobe Flash Player Malformed MP4 Code Execution (APSB12-03; CVE-2012-0753)
High	5 Mar 2012	CPAI-2012-070	CVE-2012-0752	Adobe Flash Player AVM2 Null Dereference Memory Corruption (APSB12-03; CVE-2012-0752)
High	26 Mar 2012	CPAI-2012-116	CVE-2011-3158	HP Data Protector Multiple Products RequestCopy SQL Injection (CVE-2011-3158)
Critical	26 Mar 2012	CPAI-2012-115	CVE-2011-4191	Novell Netware XNFS.NLM xdrDecodeString Heap Buffer Overflow (CVE-2011-4191)
High	26 Mar 2012	CPAI-2012-114	CVE-2010-0028	Microsoft Paint JPEG Image Parsing Integer Overflow (MS10-005; CVE-2010-0028)
High	26 Mar 2012	CPAI-2012-113	CVE-2007-0221	Microsoft Exchange Server IMAP Command Denial of Service (MS07-026; CVE-2007-0221)
High	26 Mar 2012	CPAI-2012-111	CVE-2011-2397	Autonomy Connected Backup Agent.exe Command Injection
Critical	26 Mar 2012	CPAI-2012-110		Smart Software Solutions CoDeSys Gateway Server Integer Overflow
High	26 Mar 2012	CPAI-2012-109		Microsoft Excel VBA Module Stream Use-After-Free
Critical	26 Mar 2012	CPAI-2012-108	CVE-2011-4191	Novell Netware XNFS.NLM Heap Buffer Overflow (CVE-2011-4191)
Medium	26 Mar 2012	CPAI-2012-101	CVE-2011-3360	Wireshark Insecure Search Path Script Execution (CVE-2011-3360)
High	26 Mar 2012	CPAI-2012-093		Siemens SIMATIC WinCC Flexible SCADA Runtime Stack Buffer Overflow
Medium	19 Mar 2012	CPAI-2012-097	CVE-2011-4051	InduSoft Web Studio Insecure Remote Operations (CVE-2011-4051)
High	19 Mar 2012	CPAI-2012-095	CVE-2011-3157	HP Data Protector Multiple Products GetPolicies SQL Injection (CVE-2011-3157)
Medium	19 Mar 2012	CPAI-2012-094	CVE-2011-2657	Novell ZENworks LaunchHelp.dll ActiveX Control Code Execution (CVE-2011-2657)
High	19 Mar 2012	CPAI-2012-092	CVE-2011-3544	Oracle Java Applet Rhino Script Engine Policy Bypass (CVE-2011-3544)
Critical	19 Mar 2012	CPAI-2012-090	CVE-2011-2003	Microsoft Windows Font Library File Buffer Overflow (CVE-2011-2003)
High	19 Mar 2012	CPAI-2012-083		Microsoft Excel XLS File Memory Corruption
Medium	19 Mar 2012	CPAI-2012-072	CVE-2007-0041	Microsoft .NET Framework CLI Loader Memory Corruption (CVE-2007-0041)
Medium	19 Mar 2012	CPAI-2012-035		Bennet-Tec TList ActiveX SaveData Arbitrary File Creation
High	16 Apr 2012	CPAI-2012-150	CVE-2012-0507 CVE-2009-1671	Protection against Black Hole Toolkit v1.2.3 Java Array Exploits (CVE-2009-1671; CVE-2012-0507)
High	16 Apr 2012	CPAI-2012-149	CVE-2012-0505	Oracle Java Runtime Environment Sandbox Breach (CVE-2012-0505)
High	16 Apr 2012	CPAI-2012-148	CVE-2011-0531	VideoLAN VLC MKV Memory Corruption (CVE-2011-0531)
High	16 Apr 2012	CPAI-2012-147		Oracle Java Software Update Remote Code Execution
High	16 Apr 2012	CPAI-2012-146	CVE-2005-0402	Mozilla Firefox Sidebar Panel Code Execution (CVE-2005-0402)
Critical	10 Apr 2012	CPAI-2012-133	CVE-2012-0158	MSCOMCTL.OCX Killbit: bdd1f04b-858b-11d1-b16a-00c0f0283628 (MS12-027; CVE-2012-0158)