Home / 2013 Advisories Archive

2013 Advisories Archive

Severity	Date Published	Check Point Reference	Source	Description
High	7 Jan 2013	CPAI-2013-817		IBM Lotus Notes Lotus 1-2-3 Work Sheet File Viewer Code Execution
Critical	7 Jan 2013	CPAI-2013-816	CVE-2006-0002	Microsoft Exchange and Outlook TNEF Decoding Code Execution (CVE-2006-0002)
High	7 Jan 2013	CPAI-2013-815	CVE-2008-4564	IBM Lotus Notes WPD Attachment Handling Code Execution (CVE-2008-4564)
High	7 Jan 2013	CPAI-2013-773	CVE-2006-4018	ClamAV UPX File Handling Heap Code Execution (CVE-2006-4018)
Medium	6 Jan 2013	CPAI-2013-416		Contaware FreeVimager GIF LZWMinimumCodeSize Memory Corruption
Critical	6 Jan 2013	CPAI-2013-3628	CVE-2013-1418	Kerberos Multi-realm KDC NULL Pointer Dereference Denial of Service (CVE-2013-1418)
High	2 Jan 2013	CPAI-2012-1337	CVE-2012-3756	Apple QuickTime rnet Box Parsing Heap Buffer Overflow (CVE-2012-3756)
High	2 Jan 2013	CPAI-2012-1283		Sophos Anti-Virus CAB Files Invalid typeCompress Parsing Heap Buffer Overflow
Critical	1 Jan 2013	CPAI-2013-001	CVE-2008-1855	McAfee ePolicy Orchestrator Framework Services HTTP Code Injection (CVE-2008-1855)
High	1 Jan 2013	CPAI-2012-1344	CVE-2005-4216	Macromedia Flash Media Server Malformed Data Denial of Service (CVE-2005-4216)
Critical	1 Jan 2013	CPAI-2012-1343	CVE-2007-2137	IBM Tivoli Monitoring Express Universal Agent Code Execution (CVE-2007-2137)
Medium	13 Jan 2013	CPAI-2012-840	CVE-2012-2982	Webmin show.cgi Command Execution (CVE-2012-2982)
High	13 Jan 2013	CPAI-2012-796	CVE-2012-5470	VideoLAN VLC Media Player PNG Code Execution (CVE-2012-5470)
High	13 Jan 2013	CPAI-2012-1334		Novell Sentinel Log Manager Retention Policy Security Restriction Bypass
Medium	9 Jan 2013	CPAI-2012-1348		Wibu-Systems WibuKey Runtime for Windows ActiveX Control Buffer Overflow
High	8 Jan 2013	CPAI-2013-004	CVE-2013-0013	Microsoft SSL and TLS Protocol Security Feature Bypass (MS13-006; CVE-2013-0013)
High	8 Jan 2013	CPAI-2012-1347	CVE-2013-0010	Microsoft SCOM Web Console Cross-Site Scripting (MS13-003; CVE-2013-0010)
Critical	8 Jan 2013	CPAI-2012-1346	CVE-2013-0007	Microsoft Windows MSXML XSLT Remote Code Execution (MS13-002; CVE-2013-0007)
Critical	8 Jan 2013	CPAI-2012-1342	CVE-2007-5530	Oracle Database Control Component Denial of Service (CVE-2007-5530)
High	8 Jan 2013	CPAI-2012-1341	CVE-2008-1979	CA BrightStor ARCserve Backup Discovery Service Buffer Over-Read (CVE-2008-1979)
High	8 Jan 2013	CPAI-2012-1340	CVE-2013-0009	Microsoft System Center Operations Manager Cross-Site Scripting (MS13-003; CVE-2013-0009)
High	8 Jan 2013	CPAI-2012-1338	CVE-2013-0005	Microsoft OData WCF Replace Denial of Service (MS13-007; CVE-2013-0005)
Critical	8 Jan 2013	CPAI-2012-1322	CVE-2012-5268	Adobe Flash Player Malformed Actions Remote Code Execution (APSB12-22; CVE-2012-5268)
High	8 Jan 2013	CPAI-2012-1316		Eaton MGE Network Shutdown Module Remote PHP Code Injection
Medium	8 Jan 2013	CPAI-2012-1312	CVE-2012-2983	Webmin edit_html.cgi file Parameter Traversal Arbitrary File Access (CVE-2012-2983)
Medium	8 Jan 2013	CPAI-2012-1308		NetDecision NOCVision Server Directory Traversal
Critical	7 Jan 2013	CPAI-2012-1140	CVE-2008-3263	Digium Asterisk IAX2 POKE Request Denial of Service (CVE-2008-3263)
Critical	7 Jan 2013	CPAI-2012-1310	CVE-2012-0284	Cisco Linksys PlayerPT ActiveX Control Buffer overflow (CVE-2012-0284)
Critical	20 Jan 2013	CPAI-2013-025	CVE-2012-1530	Adobe Reader Crafted XSL Remote Code Execution (APSB13-02; CVE-2012-1530)
Critical	20 Jan 2013	CPAI-2013-024	CVE-2013-0622	Adobe Reader Malformed JavaScript Security Bypass (APSB13-02; CVE-2013-0622)
Critical	20 Jan 2013	CPAI-2013-023	CVE-2013-0156	Ruby on Rails XML Processor YAML Deserialization Code Execution (CVE-2013-0156)
High	20 Jan 2013	CPAI-2013-022	CVE-2013-0624	Adobe Acrobat Reader Hybrid File Cross-Site Scripting (APSB13-02; CVE-2013-0624)
Critical	20 Jan 2013	CPAI-2013-021	CVE-2013-0604	Adobe Acrobat Reader Open Type Integer Overflow (APSB13-02; CVE-2013-0604)
High	14 Jan 2013	CPAI-2013-014	CVE-2009-0075	Microsoft Internet Explorer Cloned Object Memory Corruption (MS09-002; CVE-2009-0075)
High	13 Jan 2013	CPAI-2012-1324	CVE-2012-5576	GIMP XWD File Handling Stack Buffer Overflow (CVE-2012-5576)
Medium	13 Jan 2013	CPAI-2012-1319	CVE-2012-2962	Dell SonicWALL Scrutinizer SQL Injection (CVE-2012-2962)
High	13 Jan 2013	CPAI-2012-1315	CVE-2012-0308	Symantec Messaging Gateway Save.do Cross Site Request Forgery (CVE-2012-0308)
High	13 Jan 2013	CPAI-2012-1313	CVE-2012-3754	Apple QuickTime ActiveX Control Clear Method Use-After-Free (CVE-2012-3754)
High	13 Jan 2013	CPAI-2012-1307		Sophos Anti-Virus RAR VMSF_RGB Filter Parsing Integer Underflow
Critical	13 Jan 2013	CPAI-2012-1298	CVE-2012-4959	Novell File Reporter FSFUI File Upload (CVE-2012-4959)
High	13 Jan 2013	CPAI-2012-1289	CVE-2012-4957	Novell File Reporter SRS Arbitrary File Retrieval (CVE-2012-4957)
Critical	12 Feb 2013	CPAI-2013-382	CVE-2013-1313	Microsoft Windows Common Controls OLE Remote Code Execution (MS13-020; CVE-2013-1313)
Critical	12 Feb 2013	CPAI-2013-380	CVE-2013-0015	Internet Explorer Shift JIS Character Encoding (MS13-009; CVE-2013-0015)
Critical	12 Feb 2013	CPAI-2013-1267	CVE-2013-0019	Internet Explorer COmWindowProxy Use After Free (MS13-009; CVE-2013-0019)
Critical	12 Feb 2013	CPAI-2013-1266	CVE-2013-0022	Internet Explorer LsGetTrailInfo Use After Free (MS13-009; CVE-2013-0022)
Critical	12 Feb 2013	CPAI-2013-1265	CVE-2013-0077	Microsoft Windows Media Decompression Remote Code Execution (MS13-011; CVE-2013-0077)
Critical	12 Feb 2013	CPAI-2013-1079	CVE-2013-0021	Internet Explorer vtable Use After Free Memory Corruption (MS13-009; CVE-2013-0021)
Critical	12 Feb 2013	CPAI-2013-1052	CVE-2013-0023	Internet Explorer CDispNode Use After Free (MS13-009; CVE-2013-0023)
High	12 Feb 2013	CPAI-2013-085		Eurograbber
High	7 Feb 2013	CPAI-2013-092	CVE-2013-0634	Adobe Flash Player ActionScript Code Heap Buffer Overflow (APSB13-04; CVE-2013-0634)