Home / 2014 Advisories Archive

2014 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Low	26 Mar 2014	10 Jan 2018	CPAI-2014-1173	OpenSSL	CVE-2013-4353	OpenSSL TLS Record Tampering Denial of Service (CVE-2013-4353)
High	31 Mar 2014	3 Jan 2018	CPAI-2014-1234		CVE-2009-2501	Microsoft Windows GDIplus PNG Chunk Processing Integer Overflow (MS09-062) - Ver2 (CVE-2009-2501)
Critical	3 Jul 2014	2 Jan 2018	CPAI-2014-1687		CVE-2013-2465	LightsOut/Hello Exploit Kit (CVE-2013-2465)
High	28 Dec 2014	31 Dec 2017	CPAI-2014-2402		CVE-2002-0656	OpenSSL Large Client Master Key Exploit Buffer Overflow - Ver2 (CVE-2002-0656)
High	28 Dec 2014	31 Dec 2017	CPAI-2014-2415		CVE-2014-0160	OpenSSL TLS Heartbeat information disclosure - Ver2 (CVE-2014-0160)
High	9 Nov 2014	20 Dec 2017	CPAI-2014-1981	F5	CVE-2014-2928	F5 Multiple Products iControl API hostname Remote Command Execution (CVE-2014-2928)
High	3 Nov 2014	19 Dec 2017	CPAI-2014-1952	OpenSSL Project0141015 secadv_20141015	CVE-2014-3567	OpenSSL Invalid Session Ticket Denial of Service (CVE-2014-3567)
Medium	8 Jun 2014	18 Dec 2017	CPAI-2014-1611	GnuTLS GNUTLS-SA-2014-3	CVE-2014-3466	GnuTLS Server Hello Session ID Heap Buffer Overflow (CVE-2014-3466)
Low	10 Apr 2014	17 Dec 2017	CPAI-2014-1342		CVE-2014-2588	McAfee Asset Manager downloadReport Information Disclosure (CVE-2014-2588)
Medium	11 May 2014	3 Dec 2017	CPAI-2014-1534			TLS Servers Cipher Suites Scanning Tools
Medium	10 Nov 2014	3 Dec 2017	CPAI-2014-1991	Secunia	CVE-2014-3511	OpenSSL TLS Protocol Downgrade Attack (CVE-2014-3511)
Critical	25 Nov 2014	3 Dec 2017	CPAI-2014-2220	Microsoft MS14-066	CVE-2014-6321	Microsoft Windows SChannel Denial Of Service (MS14-066; CVE-2014-6321)
High	25 Dec 2014	3 Dec 2017	CPAI-2014-2326	OpenSSL Project0140806 secadv_20140806	CVE-2014-3512	OpenSSL Multiple Invalid SRP Parameters Buffer Overflow (CVE-2014-3512)
Critical	31 Mar 2014	26 Nov 2017	CPAI-2014-1275		CVE-2008-4837	Microsoft Word Crafted Sprm Structure Stack Memory Corruption (MS08-072) - Ver2 (CVE-2008-4837)
High	28 Dec 2014	26 Nov 2017	CPAI-2014-2443		CVE-2010-3229	Microsoft SChannel TLSv1 Denial of Service (MS10-085) - Ver2 (CVE-2010-3229)
Medium	28 Dec 2014	26 Nov 2017	CPAI-2014-2441		CVE-2010-0740	OpenSSL TLS Connection Record Handling Denial of Service - Ver2 (CVE-2010-0740)
Medium	28 Dec 2014	22 Nov 2017	CPAI-2014-2401		CVE-2004-0748	Apache 2 mod_ssl Connection Abort Denial of Service possible attack - Ver2 (CVE-2004-0748)
High	3 Dec 2014	21 Nov 2017	CPAI-2014-2232			Malformed PDF Version Header
High	23 Mar 2014	20 Nov 2017	CPAI-2014-1170	OpenSSL Project	CVE-2013-6449	OpenSSL ssl_get_algorithm2 TLS Denial of Service - ver 2 (CVE-2013-6449)
High	4 May 2014	20 Nov 2017	CPAI-2014-1520	GnuTLS GNUTLS-SA-2014-1	CVE-2014-1959	GnuTLS X.509 Version 1 Intermediate Certificate Policy Bypass (CVE-2014-1959)
High	19 Oct 2014	19 Nov 2017	CPAI-2014-1912	Mozilla mfsa2014-73	CVE-2014-1568	Mozilla Network Security Services RSA Signature Forgery (CVE-2014-1568)
High	28 Dec 2014	19 Nov 2017	CPAI-2014-2403		CVE-2009-2511	Microsoft CryptoAPI Object Identifiers Integer Overflow (MS09-056) - Ver2 (CVE-2009-2511)
High	19 May 2014	15 Nov 2017	CPAI-2014-1550	OpenSSL	CVE-2014-0198	OpenSSL do_ssl3_write Denial of Service (CVE-2014-0198)
High	23 Feb 2014	23 Aug 2017	CPAI-2014-1741			JavaScript Code Evasion Attempt
Critical	23 Jun 2014	2 Aug 2017	CPAI-2014-1658			RIG Exploit Kit Website Redirection
Critical	25 May 2014	16 Jul 2017	CPAI-2014-1566			SQL Servers MSSQL Vendor-specific SQL Injection
High	16 Nov 2014	16 Jul 2017	CPAI-2014-2199		CVE-2010-2910	Joomla Component com_oziogallery SQL Injection (CVE-2010-2910)
Critical	12 Aug 2014	2 Jul 2017	CPAI-2014-1752	Microsoft MS14-051	CVE-2014-2824	Microsoft Internet Explorer Memory Corruption (MS14-051: CVE-2014-2824)
High	10 Dec 2014	19 Jun 2017	CPAI-2014-2294			RomPager Authentication Bypass Attempt - Misfortune Cookie
Medium	8 May 2014	9 May 2017	CPAI-2014-1525	GnuTLS GNUTLS-SA-2014-2	CVE-2014-0092	GnuTLS Certificate Verification Policy Bypass (CVE-2014-0092)
Critical	29 May 2014	3 May 2017	CPAI-2014-1582	Symantec 20140512_00	CVE-2014-1649	Symantec Workspace Streaming XML-RPC Arbitrary File Upload (CVE-2014-1649)
High	2 Jun 2014	9 Apr 2017	CPAI-2014-1587	IPS Research Team Rapid7		WinRAR Filename Spoofing
High	27 Mar 2014	4 Apr 2017	CPAI-2014-1187			Anonymous DoSer Denial of Service Tool
High	1 May 2014	28 Mar 2017	CPAI-2014-1508			SSH Over DNS Tunneling
High	30 Oct 2014	28 Mar 2017	CPAI-2014-1943	Microsoft MS14-052	CVE-2013-7331	Microsoft Internet Explorer Resource Information Disclosure (MS14-052; CVE-2013-7331)
Critical	16 Apr 2014	13 Feb 2017	CPAI-2014-1425	Metasploit	CVE-2009-4265	PointDev IDEAL Migration and Administration Buffer Overflow - Ver2 (CVE-2009-4265)
Critical	17 Dec 2014	7 Feb 2017	CPAI-2014-2305		CVE-2014-9734 CVE-2015-1579	WordPress Slider Revolution Plugin Local File Inclusion (CVE-2014-9734; CVE-2015-1579)
Critical	16 Apr 2014	11 Jan 2017	CPAI-2014-1401		CVE-2012-0151	Microsoft Windows Signature Validation Remote Code Execution (MS12-024) - Ver2 (CVE-2012-0151)
High	8 Jul 2014	10 Jan 2017	CPAI-2014-1679	Microsoft MS14-037	CVE-2014-1765	Microsoft Internet Explorer Memory Corruption (MS14-037: CVE-2014-1765)
Critical	13 Jul 2014	3 Jan 2017	CPAI-2014-1596	Microsoft MS14-035	CVE-2014-1775	Microsoft Internet Explorer Memory Corruption (MS14-035: CVE-2014-1775)
Medium	18 Dec 2014	2 Jan 2017	CPAI-2014-2312	Microsoft MS14-085	CVE-2014-6355	Microsoft Graphics Component Information Disclosure (MS14-085) - ver 2 (CVE-2014-6355)
High	31 Mar 2014	28 Dec 2016	CPAI-2014-1263		CVE-2010-2862	Adobe Reader cooltype.dll Remote Code Execution (APSB10-17) - Ver2 (CVE-2010-2862)
Critical	11 Feb 2014	27 Dec 2016	CPAI-2014-0876		CVE-2014-0283	Microsoft Internet Explorer Memory Corruption (MS14-010: CVE-2014-0283)
Critical	10 Jun 2014	27 Dec 2016	CPAI-2014-1630	Mozilla mfsa2014-29	CVE-2014-1510 CVE-2014-1511	Mozilla Multiple Products WebIDL Remote Code Execution (CVE-2014-1510; CVE-2014-1511)
Medium	8 May 2014	26 Dec 2016	CPAI-2014-1529		CVE-2013-4449	OpenLDAP rwm Overlay Denial of Service - ver 2 (CVE-2013-4449)
Critical	10 Jun 2014	26 Dec 2016	CPAI-2014-1499	Microsoft MS14-035	CVE-2014-1789	Microsoft Internet Explorer Memory Corruption (MS14-035: CVE-2014-1789)
Critical	3 Sep 2014	25 Dec 2016	CPAI-2014-1789	Attachmate 2546	CVE-2014-0603	Attachmate Reflection FTP Client ActiveX GetGlobalSettings Memory Corruption (CVE-2014-0603)
Critical	11 Feb 2014	22 Dec 2016	CPAI-2014-0872	Microsoft MS14-010	CVE-2014-0275	Microsoft Internet Explorer Memory Corruption (MS14-010: CVE-2014-0275)
Critical	11 Sep 2014	21 Dec 2016	CPAI-2014-1804	Mozilla Foundation 2014-56	CVE-2014-1548	Mozilla Firefox SharedWorker MessagePort Use After Free (CVE-2014-1548)
Critical	1 Dec 2014	19 Dec 2016	CPAI-2014-2262	Microsoft MS14-035	CVE-2014-2782	Microsoft Internet Explorer Use After Free (CVE-2014-2782)