Search

Traffic File Update - July 2012

This Traffic IQ Professional update for July 2012 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for July 2012

82 Application Exploits

Apple iTunes '.m3u' File Buffer Overflow Vulnerability (MessageBox) S
Apple iTunes '.m3u' File Buffer Overflow Vulnerability (win_exec) S
Cisco Linksys PlayerPT 'SetSource()' Vulnerability (MessageBox) S
Cisco Linksys PlayerPT 'SetSource()' Vulnerability (win_exec) S
Cisco Linksys PlayerPT 'SetSource()' Vulnerability (win_shell_bind_tcp) S
HTTP docXP 'fid' Parameter Directory Traversal Vulnerability S
HTTP IrfanView Formats PlugIn 'jpeg_ls.dll' Heap Buffer Overflow Vulnerability S
HTTP Kajona 'getAllPassedParams()' Function 'absender_name' Parameter XSS Vulnerability S
HTTP Kajona 'getAllPassedParams()' Function 'action' Parameter XSS Vulnerability S
HTTP Kajona 'getAllPassedParams()' Function 'comment_name' Parameter XSS Vulnerability S
HTTP Kajona 'getAllPassedParams()' Function 'module' Parameter XSS Vulnerability S
HTTP MGB 'index.php' Cross Site Scripting Vulnerability S
HTTP PMSoftware Simple Web Server Remote Buffer Overflow Vulnerability S
HTTP REDAXO 'subpage' template Parameter XSS Vulnerability S
HTTP REDAXO 'subpage' user Parameter XSS Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'dot1x' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'igmpconf' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'lacp' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'ports_bsc' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'ports_mir' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'qos_conf' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'rstp' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'security_acl' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'security_port' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'snmp' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'status_ov' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'system_smac' Authentication Bypass Vulnerability S
HTTP SMC Networks SMC8024L2 Switch 'vlan_pconf' Authentication Bypass Vulnerability S
HTTP SpecView Web Server Directory Traversal Vulnerability (SCADA) S
HTTP SpecView Web Server Directory Traversal Vulnerability (SCADA)_1 S
HTTP SWFUpload 'movieName' Parameter Cross Site Scripting Vulnerability S
HTTP Symantec Web Gateway CVE-2012-2953 Remote Shell Command Execution Vulnerability S
HTTP WebsitePanel 'ReturnUrl' Parameter URI Redirection Vulnerability S
HTTP WebsitePanel 'ReturnUrl' Parameter URI Redirection Vulnerability_1 S
HTTP WordPress church_admin 'id' parameter XSS Vulnerability S
HTTP WordPress Count Per Day Plugin 'datemax' Parameter XSS Vulnerability S
HTTP WordPress Count Per Day Plugin 'datemin' Parameter XSS Vulnerability S
HTTP WordPress Count Per Day Plugin 'page' Parameter XSS Vulnerability S
HTTP WordPress custom tables 'key' Parameter XSS Vulnerability S
HTTP WordPress Knews Multilingual Newsletters XSS Vulnerability S
HTTP WordPress WP Socializer 'val' Parameter XSS Vulnerability S
IBM Rational ClearQuest CQOle Remote Code Execution (MessageBox) S
IBM Rational ClearQuest CQOle Remote Code Execution (win_exec) S
IBM Rational ClearQuest CQOle Remote Code Execution (win_shell_bind_tcp) S
IBM Rational ClearQuest CQOle Remote Code Execution (win_shell_reverse_ord_tcp) S
IBM Rational ClearQuest CQOle Remote Code Execution (win_shell_reverse_tcp) S
InduSoft Web Studio CEServer.exe 'remove DIR' Vulnerability (SCADA) S
InduSoft Web Studio CEServer.exe 'remove file' Vulnerability (SCADA) S
InduSoft Web Studio CEServer.exe 'start' Vulnerability (SCADA) S
InduSoft Web Studio CEServer.exe 'stop' Vulnerability (SCADA) S
IrfanView JPEG-2000 Plugin Buffer Overflow Vulnerability (MessageBox) S
IrfanView JPEG-2000 Plugin Buffer Overflow Vulnerability (win_exec) S
IrfanView JPEG-2000 Plugin Buffer Overflow Vulnerability (win_shell_bind_tcp) S
IrfanView JPEG-2000 Plugin Buffer Overflow Vulnerability (win_shell_bind_tcp_xpfw) S
IrfanView JPEG-2000 Plugin Buffer Overflow Vulnerability (win_shell_reverse_ord_tcp) S
IrfanView JPEG-2000 Plugin Buffer Overflow Vulnerability (win_shell_reverse_tcp) S
Novell ZENworks Config Management Preboot Service 0x06 Vulnerability (MessageBox) S
Novell ZENworks Config Management Preboot Service 0x06 Vulnerability (win_exec) S
Novell ZENworks Config Management Preboot Service 0x06 Vulnerability (win_shell_bind_tcp) S
Novell ZENworks Config Management Preboot Service 0x06 Vulnerability (win_shell_reverse_tcp) S
Novell ZENworks Config Management Preboot Service 0x21 Vulnerability (MessageBox) S
Novell ZENworks Config Management Preboot Service 0x21 Vulnerability (win_exec) S
Novell ZENworks Config Management Preboot Service 0x21 Vulnerability (win_shell_bind_tcp) S
Novell ZENworks Config Management Preboot Service 0x21 Vulnerability (win_shell_reverse_tcp) S
Novell ZENworks Config Management Preboot Service 0x4c Vulnerability (MessageBox) S
Novell ZENworks Config Management Preboot Service 0x4c Vulnerability (win_exec) S
Novell ZENworks Config Management Preboot Service 0x4c Vulnerability (win_shell_bind_tcp) S
Novell ZENworks Config Management Preboot Service 0x4c Vulnerability (win_shell_reverse_tcp) S
Novell ZENworks Config Management Preboot Service 0x6c Vulnerability (MessageBox) S
Novell ZENworks Config Management Preboot Service 0x6c Vulnerability (win_exec) S
Novell ZENworks Config Management Preboot Service 0x6c Vulnerability (win_shell_bind_tcp) S
Novell ZENworks Config Management Preboot Service 0x6c Vulnerability (win_shell_reverse_tcp) S
Photodex ProShow Producer 'load' File Vulnerability (MessageBox) S
Photodex ProShow Producer 'load' File Vulnerability (win_exec) S
Photodex ProShow Producer 'load' File Vulnerability (win_shell_bind_tcp) S
Photodex ProShow Producer 'load' File Vulnerability (win_shell_reverse_ord_tcp) S
Photodex ProShow Producer 'load' File Vulnerability (win_shell_reverse_tcp) S
Photodex ProShow Producer 'load' File Vulnerability S
Sielco Sistemi Winlog Pro Directory Traversal Vulnerability (SCADA)_2 S
WaveSurfer '.wav' File Denial of Service Vulnerability S
ZipItFast PRO '.zip' File Heap Buffer Overflow Vulnerability S
Zoom Player '.avi' File Divide-By-Zero DoS Vulnerability S

6 Evasions

Evasion HTTP chunked (for CVE-2012-0284) S
Evasion HTTP chunked (for CVE-2012-0708) S
Evasion HTTP Header Folding (for CVE-2012-0284) S
Evasion HTTP Header Folding (for CVE-2012-0708) S
Evasion HTTP junk headers (for CVE-2012-0284) S
Evasion HTTP junk headers (for CVE-2012-0708) S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.