Home / 2013 Advisories Archive

2013 Advisories Archive

Severity	Date Published	Check Point Reference	Source	Description
Critical	13 Oct 2013	CPAI-2013-2963	CVE-2013-4635	PHP SdnToJewish Function Integer Overflow (CVE-2013-4635)
High	13 Oct 2013	CPAI-2013-2954		Apple IOS and OSX WebKit Engine Denial Of Service
High	13 Oct 2013	CPAI-2013-2953	CVE-2012-3748	Apple Safari Heap Buffer Overflow (CVE-2012-3748)
Medium	13 Oct 2013	CPAI-2013-2519	CVE-2011-4075	PHP phpLDAPadmin Remote Code Execution (CVE-2011-4075)
Medium	13 Oct 2013	CPAI-2013-2512	CVE-2013-4883	McAfee ePolicy Orchestrator Multiple Cross Site Scripting (CVE-2013-4883)
High	13 Oct 2013	CPAI-2013-2502	CVE-2013-1020	Apple QuickTime MJPEG Frame stsd Atom Heap Overflow (CVE-2013-1020)
Critical	13 Oct 2013	CPAI-2013-2497	CVE-2013-2328	HP Data Protector CRS Opcode 215 and 263 Stack Buffer Overflow (CVE-2013-2328)
Critical	13 Oct 2013	CPAI-2013-2491	CVE-2013-4123	Squid HTTP Host Header Port Handling Denial of Service (CVE-2013-4123)
High	8 Oct 2013	CPAI-2013-2918	CVE-2013-3860	Microsoft .NET Framework Entity Expansion Denial of Service (MS13-082; CVE-2013-3860)
High	8 Oct 2013	CPAI-2013-2911	CVE-2013-3861	Microsoft Internet Explorer Javascript Runtime Denial Of Service (MS13-082; CVE-2013-3861)
Critical	27 Oct 2013	CPAI-2013-3492	CVE-2013-5641	Digium Asterisk SIP Terminated Channel ACK with SDP Denial of Service (CVE-2013-5641)
High	27 Oct 2013	CPAI-2013-3490	CVE-2013-3520	VMware vCenter Chargeback Manager ImageUploadServlet Arbitrary File Upload (CVE-2013-3520)
Critical	27 Oct 2013	CPAI-2013-3489		BlackHole Toolkit v2 EXE Payload Stage Code Execution
Critical	27 Oct 2013	CPAI-2013-3488		BlackHole Toolkit v2 Flash Player Payload Stage Code Execution
Critical	27 Oct 2013	CPAI-2013-3487		BlackHole Toolkit v2 Adobe Reader Payload Stage Code Execution
Critical	27 Oct 2013	CPAI-2013-3485		BlackHole Toolkit v2 Landing Page Stage Code Execution
Medium	27 Oct 2013	CPAI-2013-3484	CVE-2013-0733	Corel PaintShop Pro Insecure Library Loading (CVE-2013-0733)
High	20 Oct 2013	CPAI-2013-2986	CVE-2011-2505	PhpMyAdmin Remote Variable Manipulation (CVE-2011-2505)
High	20 Oct 2013	CPAI-2013-2985	CVE-2011-2506	PhpMyAdmin Sweky Remote Code Injection Exploit (CVE-2011-2506)
Critical	13 Oct 2013	CPAI-2013-1912	CVE-2013-2331	HP Data Protector CRS Opcode 1092 Stack Buffer Overflow (CVE-2013-2331)
High	27 Oct 2013	CPAI-2013-2977	CVE-2010-4228	Novell Netware FTP Server DELE Command Stack Buffer Overflow (CVE-2010-4228)
Critical	27 Oct 2013	CPAI-2013-2973	CVE-2013-4298	ImageMagick GIF Comment Processing Off-by-one Buffer Overflow (CVE-2013-4298)
Medium	27 Oct 2013	CPAI-2013-2968	CVE-2013-4811	HP ProCurve Manager SNAC UpdateDomainControllerServlet Code Execution (CVE-2013-4811)
Medium	27 Oct 2013	CPAI-2013-2966	CVE-2013-2368	HP LoadRunner micWebAjax.dll ActiveX Control Stack Buffer Overflow (CVE-2013-2368)
Medium	27 Oct 2013	CPAI-2013-2964	CVE-2013-2577	XnView PCT File Processing Buffer Overflow (CVE-2013-2577)
High	27 Oct 2013	CPAI-2013-2962	CVE-2013-4152	SpringSource Spring Framework XML External Entity Information Disclosure (CVE-2013-4152)
High	27 Oct 2013	CPAI-2013-2961	CVE-2013-5642	Digium Asterisk SIP Invalid SDP Media Descriptions Denial of Service (CVE-2013-5642)
Critical	27 Oct 2013	CPAI-2013-2958	CVE-2013-2327	HP Data Protector CRS Opcode 264 Stack Buffer Overflow (CVE-2013-2327)
Critical	27 Oct 2013	CPAI-2013-2957		PineApp Mail-SeCure livelog.html Command Injection
High	27 Oct 2013	CPAI-2013-2951	CVE-2013-5093	Graphite Web Unsafe Module Handling Code Execution (CVE-2013-5093)
High	27 Oct 2013	CPAI-2013-2942	CVE-2005-1174	MIT Kerberos V5 KDC TCP Handling Denial of Service (CVE-2005-1174)
Medium	27 Oct 2013	CPAI-2013-2941		VLC Media Player ABC File Parts Field Parsing Heap Integer Overflow
High	27 Oct 2013	CPAI-2013-2933	CVE-2013-2461	Oracle Java SE XML Digital Signature Spoofing (CVE-2013-2461)
Critical	27 Oct 2013	CPAI-2013-2932	CVE-2013-2362	HP System Management Homepage iprange Stack Buffer Overflow (CVE-2013-2362)
Critical	4 Nov 2013	CPAI-2013-3518	CVE-2013-4822	HP Intelligent Management Center BIMS UploadServlet Arbitrary File Upload (CVE-2013-4822)
High	4 Nov 2013	CPAI-2013-3507	CVE-2013-0653	GE Intelligent Platforms Proficy SCADA Substitute.bcl Directory Traversal (CVE-2013-0653)
Medium	4 Nov 2013	CPAI-2013-3506		Double Executable File Extension Arbitrary File Execution
Medium	4 Nov 2013	CPAI-2013-3504	CVE-2011-4449	WikkaWiki Spam Logging PHP Injection (CVE-2011-4449)
Medium	4 Nov 2013	CPAI-2013-3502	CVE-2010-2772	Siemens Simatic SCADA WINCC SQL Insecure Default Credentials Security Bypass (CVE-2010-2772)
High	4 Nov 2013	CPAI-2013-3500	CVE-2013-3027	IBM iNotes ActiveX Control Integer Overflow (CVE-2013-3027)
Critical	4 Nov 2013	CPAI-2013-3494		Titan FTP Administrative Password Disclosure
High	27 Oct 2013	CPAI-2013-2892	CVE-2013-4124	Samba smbd read_nttrans_ea_list Infinite Allocation Loop Denial of Service (CVE-2013-4124)
High	27 Oct 2013	CPAI-2013-2890	CVE-2013-3192	Microsoft Internet Explorer EUC-JP Character Encoding Cross Site Scripting (MS13-059; CVE-2013-3192)
Critical	27 Oct 2013	CPAI-2013-2489	CVE-2013-2332	HP Data Protector CRS Opcode 260 Stack Buffer Overflow (CVE-2013-2332)
Critical	27 Oct 2013	CPAI-2013-2486	CVE-2013-2334	HP Data Protector CRS Opcode 1091 Stack Buffer Overflow (CVE-2013-2334)
Critical	18 Nov 2013	CPAI-2013-3550	CVE-2008-1910	Borland Software InterBase ibserver.exe Service Attach Request Buffer Overflow (CVE-2008-1910)
High	12 Nov 2013	CPAI-2013-3547	CVE-2013-3908	Microsoft Internet Explorer Information Disclosure (MS13-088: CVE-2013-3908)
High	12 Nov 2013	CPAI-2013-3546	CVE-2013-3619	Supermicro Onboard IPMI Static SSL Certificate Scanner Information Disclosure (CVE-2013-3619)
Critical	12 Nov 2013	CPAI-2013-3539	CVE-2013-3901	Microsoft Graphics Device Interface Integer Overflow (MS13-089; CVE-2013-3901)
Critical	12 Nov 2013	CPAI-2013-3531	CVE-2013-3912	Microsoft Internet Explorer Memory Corruption (MS13-088: CVE-2013-3912)