Home / 2012 Advisories Archive

2012 Advisories Archive

Severity	Date Published	Check Point Reference	Source	Description
Critical	30 Apr 2012	CPAI-2012-091		HP Data Protector Media Operations Directory Traversal
High	14 May 2012	CPAI-2012-232	CVE-2012-0499	Oracle Java Runtime TTF Heap Buffer Overflow (CVE-2012-0499)
Critical	14 May 2012	CPAI-2012-231	CVE-2011-4191	Novell Netware XNFS.NLM Caller Name xdrDecodeString Heap Buffer Overflow (CVE-2011-4191)
Medium	14 May 2012	CPAI-2012-230	CVE-2011-3319	Cisco WebEx Player ATDL2006.dll Heap Memory Corruption (CVE-2011-3319)
Critical	14 May 2012	CPAI-2012-227	CVE-2011-3045	libpng png_inflate Buffer Overflow (CVE-2011-3045)
Critical	14 May 2012	CPAI-2012-224	CVE-2011-4194	Novell iPrint Server attributes-natural-language Buffer Overflow (CVE-2011-4194)
Critical	14 May 2012	CPAI-2012-222	CVE-2012-0395	EMC NetWorker nsrindexd.exe Buffer Overflow (CVE-2012-0395)
High	14 May 2012	CPAI-2012-221	CVE-2012-0501	Oracle Java zip_util readCEN Stack Overflow (CVE-2012-0501)
Critical	14 May 2012	CPAI-2012-220		Novell GroupWise Messenger nmma.exe Login Memory Corruption
High	14 May 2012	CPAI-2012-219	CVE-2010-2561	Microsoft XML Core Services Response Handling Memory Corruption (MS10-051; CVE-2010-2561)
Critical	14 May 2012	CPAI-2012-218		PHP htmlspecialchars htmlentities Buffer Overflow
Critical	14 May 2012	CPAI-2012-217	CVE-2011-3923	Apache Struts 2 ParametersInterceptor OGNL Command Execution (CVE-2011-3923)
Critical	14 May 2012	CPAI-2012-216	CVE-2012-0199	IBM Tivoli Provisioning Manager Express User.updateUserValue SQL Injection (CVE-2012-0199)
Critical	14 May 2012	CPAI-2012-214	CVE-2012-0199	IBM Tivoli Provisioning Manager Express Asset.getMimeType SQL Injection (CVE-2012-0199)
High	14 May 2012	CPAI-2012-213	CVE-2010-3269	Cisco WebEx Player Malformed .WRF File Code Execution (CVE-2010-3269)
High	14 May 2012	CPAI-2012-212	CVE-2009-2621	Squid Proxy Invalid HTTP Request Denial of Service (CVE-2009-2621)
Critical	14 May 2012	CPAI-2012-211	CVE-2011-3478	Symantec pcAnywhere Host Services Login Remote Code Execution (CVE-2011-3478)
Critical	14 May 2012	CPAI-2012-210	CVE-2012-0110	Oracle Outside In Lotus 1-2-3 Heap Buffer Overflow (CVE-2012-0110)
Critical	14 May 2012	CPAI-2012-209	CVE-2012-0830	PHP php_register_variable_ex Function Code Execution (CVE-2012-0830)
High	14 May 2012	CPAI-2012-208	CVE-2011-4189	Novell GroupWise Address Book Heap Buffer Overflow (CVE-2011-4189)
Critical	14 May 2012	CPAI-2012-207	CVE-2011-3026	libpng png_decompress_chunk Integer Overflow (CVE-2011-3026)
High	14 May 2012	CPAI-2012-206	CVE-2011-4789	HP Diagnostics magentservice.exe Code Execution (CVE-2011-4789)
Critical	14 May 2012	CPAI-2012-205	CVE-2012-0870	Samba smbd Packets Infinite Loop Code Execution (CVE-2012-0870)
Critical	14 May 2012	CPAI-2012-203		Novell eDirectory Unchecked Length Denial of Service
Medium	14 May 2012	CPAI-2012-202	CVE-2011-3000	Mozilla Multiple Products Multiple Location Headers CRLF Injection (CVE-2011-3000)
Critical	14 May 2012	CPAI-2012-201	CVE-2011-3167	HP OpenView Network Node Manager ov.dll Buffer Overflow (CVE-2011-3167)
High	14 May 2012	CPAI-2012-196	CVE-2011-2131	Adobe Photoshop CS5 Malformed GIF File Code Execution (APSB11-22; CVE-2011-2131)
Medium	14 May 2012	CPAI-2012-192	CVE-2011-3834	Nullsoft Winamp RIFF INFO Record Heap Buffer Overflow (CVE-2011-3834)
Critical	14 May 2012	CPAI-2012-191	CVE-2011-0609	Adobe Flash Player Malformed SWF Memory Corruption (APSA11-01; CVE-2011-0609)
Medium	14 May 2012	CPAI-2012-188	CVE-2012-0189	IBM SPSS VsVIEW6.ocx ActiveX control Code Execution (CVE-2012-0189)
High	14 May 2012	CPAI-2012-187		ASUS Net4Switch ipswcom.dll ActiveX Control Stack Buffer Overflow
High	14 May 2012	CPAI-2012-186	CVE-2011-4786	HP Easy Printer Care ActiveX Control Directory Traversal (CVE-2011-4786)
Critical	14 May 2012	CPAI-2012-185		Citrix Provisioning Services streamprocess.exe Integer Underflow
High	14 May 2012	CPAI-2012-184		IBM solidDB ROWNUM Subquery Denial of Service
Critical	14 May 2012	CPAI-2012-183		Oracle Outside In OOXML Relationship Tag Parsing Stack Buffer Overflow
High	14 May 2012	CPAI-2012-182	CVE-2012-0247	ImageMagick EXIF ResolutionUnit Handling Memory Corruption (CVE-2012-0247)
High	14 May 2012	CPAI-2012-181	CVE-2012-0444	Mozilla Multiple Products Ogg Vorbis Decoding Memory Corruption (CVE-2012-0444)
Critical	14 May 2012	CPAI-2012-177	CVE-2011-4862	Multiple Vendors BSD telnetd Encryption Key Buffer Overflow (CVE-2011-4862)
Medium	14 May 2012	CPAI-2012-176	CVE-2011-1388	IBM Rational Rhapsody BBFlashBack.Recorder.dll Multiple Code Execution (CVE-2011-1388)
High	14 May 2012	CPAI-2012-175	CVE-2012-0053	Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure (CVE-2012-0053)
High	14 May 2012	CPAI-2012-174		Novell GroupWise Messenger nmma.exe createsearch Memory Corruption
Critical	28 May 2012	CPAI-2012-243	CVE-2011-5007	Smart Software Solutions CoDeSys ControlService Stack Buffer Overflow (CVE-2011-5007)
Critical	28 May 2012	CPAI-2012-242	CVE-2012-0160	Microsoft .NET Framework Serialization Data Validation Error (MS12-035; CVE-2012-0160)
Critical	28 May 2012	CPAI-2012-241	CVE-2012-0161	Microsoft .NET Framework Serialization Code Execution (MS12-035; CVE-2012-0161)
High	28 May 2012	CPAI-2012-238	CVE-2011-1965	Microsoft Windows TCP/IP QOS Denial of Service (MS11-064; CVE-2011-1965)
Critical	28 May 2012	CPAI-2012-226		Digium Asterisk Management Interface Out-of-Bounds Stack Buffer Overflow
Critical	28 May 2012	CPAI-2012-223		CA Total Defense Suite UNCWS exportReport SQL Injection
High	28 May 2012	CPAI-2012-204	CVE-2012-0499	Oracle Java Runtime True Type Font IDEF Opcode Heap Buffer Overflow (CVE-2012-0499)
High	14 May 2012	CPAI-2012-172	CVE-2011-3205	Squid Proxy Gopher Response Processing Denial of Service (CVE-2011-3205)
High	14 May 2012	CPAI-2012-171	CVE-2011-3210	OpenSSL Handshake Sequence Cipher Suite Use-After-Free (CVE-2011-3210)