Search

Traffic File Update - February 2013

This Traffic IQ Professional update for February 2013 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for February 2013

138 Application Exploits

Adobe Flash Player Memory Denial of Service S
Adobe Flash Player Memory Denial of Service_1 S
Adobe Photoshop CS6 PNG Parsing Heap Overflow S
Adobe Reader CoolType WriteAV Vulnerability S
Adobe Reader JP2KLib WriteAV Vulnerability S
Apple QuickTime '.qtif' File Denial of Service Vulnerability S
Apple QuickTime CVE-2012-3755 Buffer Overflow Vulnerability S
Astium PBX Denial of Service Vulnerability S
Buffalo TeraStation Arbitrary File Download Vulnerability S
Buffalo TeraStation Arbitrary File Download Vulnerability_1 S
Buffalo TeraStation Command Injection Vulnerability S
Check Point UTM-1 Edge and Safe CSRF Vulnerability S
Check Point UTM-1 Edge and Safe Diagnostic Command XSS Vulnerability S
Check Point UTM-1 Edge and Safe Information Disclosure Vulnerability S
Check Point UTM-1 Edge and Safe Offsite Redirection Vulnerability S
Check Point UTM-1 Edge and Safe Reflective XSS Vulnerability S
Check Point UTM-1 Edge and Safe Wifi Hotspot CSRF Vulnerability S
D-Link DCS Camera Unauthenticated Remote Access Vulnerability S
DataLife Engine 'preview.php' PHP Code Injection Vulnerability (gen_shell_bind_tcp) S
DataLife Engine 'preview.php' PHP Code Injection Vulnerability (php_exec) S
Dell OpenManage Server Administrator CVE-2012-6272 Cross Site Scripting Vulnerability S
GE Proficy Historian 'KeyHelp.ocx' ActiveX Control Remote Code Execution Vulnerability S
HTTP Aloaha PDF Crypter SaveToFile() Method Arbitrary File Overwrite Vulnerability S
HTTP Apache OFBiz CVE-2013-0177 Multiple Cross Site Scripting Vulnerabilities S
HTTP Cisco Linksys E1500 & E2500 Router CSRF Vulnerability S
HTTP Cisco Linksys E1500 & E2500 Router OS Command Injection Vulnerability S
HTTP EasyITSP 'voicemail.php' Directory Traversal Vulnerability S
HTTP ezStats for Battlefield 3 'common' Parameter XSS Vulnerability S
HTTP ezStats for Battlefield 3 Local File Include Vulnerability S
HTTP Glossword Multiple Input Validation Vulnerabilities S
HTTP Kohana 'str_replace()' Function Directory Traversal Vulnerability S
HTTP Linksys WRT54GL 'f_name' Cross-Site Scripting Vulnerability S
HTTP Linksys WRT54GL 'password' Cross-Site Request Forgery Vulnerability S
HTTP Linksys WRT54GL OS Command Injection Vulnerability S
HTTP Nagios XI Configuration File Injection Vulnerability S
HTTP Nagios XI Reflected Cross Site Scripting Vulnerability S
HTTP Nagios XI SQL Injection Vulnerability S
HTTP NetGear DGN1000B Wireless Router 'service_name' Parameter XSS Vulnerability S
HTTP NetGear DGN1000B Wireless Router 'ssid_num' Parameter XSS Vulnerability S
HTTP NetGear DGN1000B Wireless Router OS Command Injection Vulnerability S
HTTP Novell GroupWise HTTP Interfaces Directory Traversal Vulnerability S
HTTP Opera Web Browser Use-After-Free Memory Corruption Vulnerability S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerabilities S
HTTP php-Charts 'url.php' Arbitrary PHP Code Execution Vulnerability S
HTTP Quick.Cms and Quick.Cart 'admin.php' CVE-2012-6430 XSS Vulnerability S
HTTP Quick.Cms and Quick.Cart 'admin.php' CVE-2012-6430 XSS Vulnerability_1 S
HTTP Samsung Kies CVE-2012-6429 Remote Buffer Overflow Vulnerability S
HTTP Schmid Watson Management Console Directory Traversal Vulnerability S
HTTP Scripts Genie Classified Ultra 'subclass.php' XSS Vulnerability S
HTTP Simple Webserver Traversal Arbitrary File Access Vulnerability S
HTTP SiteGo 'idm' Parameter Cross Site Scripting Vulnerability S
HTTP SonicWALL Multiple Products CVE-2013-1360 Authentication Bypass Vulnerability S
HTTP SonicWALL Multiple Products Unauthenticated Password Change Vulnerability S
HTTP Sony Playstation Vita Browser 'window.open()' URI Spoofing Vulnerability S
HTTP WordPress Age Verification plugin 'redirect_to' Parameter URI Redirection Vulnerability S
HTTP WordPress Chocolate WP Theme Cross Site Scripting Vulnerability S
HTTP WordPress CommentLuv Plugin '_ajax_nonce' Parameter XSS Vulnerability S
HTTP WordPress flashnews Theme 'src' Parameter Input Validation Vulnerability S
HTTP WordPress flashnews Theme 'src' Parameter Remote DoS Vulnerability S
HTTP WordPress flashnews Theme 'src' Parameter XSS Vulnerability S
HTTP WordPress flashnews Theme 'test.php' Parameter XSS Vulnerability S
HTTP WordPress Gallery Plugin 'filename_1' Parameter Remote File Access Vulnerability S
HTTP WordPress Integrator 'redirect_to' Parameter XSS Vulnerability S
HTTP WordPress Ripe HD FLV Player Plugin Full Path Disclosure Vulnerability S
HTTP WordPress WP-Table Reloaded Plugin 'id' Parameter XSS Vulnerability S
HTTP WordPress Wysija Newsletters Plugin CVE-2013-1408 SQL Injection Vulnerability S
Internet Explorer Col Element Remote Code Execution Vulnerability S
Internet Explorer Col Element Remote Code Execution Vulnerability_1 S
Internet Explorer MSXML Uninitialized Memory Corruption Vulnerability S
Internet Explorer MSXML Uninitialized Memory Corruption Vulnerability_1 S
KMPlayer '.m3u' File Denial of Service Vulnerability S
Konqueror v4.7.3 Bounds Memory Access Vulnerability S
Konqueror v4.7.3 NULL Pointer Dereference Vulnerability S
Konqueror v4.7.3 Use-After-Free Vulnerability S
lighttpd 'http_request_split_value()' Function Remote Denial of Service Vulnerability S
ManageEngine MSP Center Plus MonagentID Parameter Cross-Site Scripting Vulnerability S
ManageEngine Support Center Plus XSS Vulnerability S
Media Player Classic MPEG4 Heap Overflow Vulnerability S
Microsoft Internet Explorer 7 Denial of Service S
Microsoft Internet Explorer Information Disclosure Vulnerability S
Microsoft Lync 'User-Agent' Cross Site Scripting Vulnerability S
Microsoft Office Excel 2010 Memory Corruption S
Microsoft Office OneNote 2010 WriteAV Vulnerability S
Microsoft Office Word 2010 Crash Vulnerability S
Microsoft Visio 2010 Memory Corruption Vulnerability S
Mozilla Firefox HTML JS DoS Vulnerability S
Nagios3 history.cgi Host Command Execution Vulnerability S
Netgear SPH200D Multiple Directory Traversal Vulnerabilities S
Netgear SPH200D Multiple Directory Traversal Vulnerabilities_1 S
Netgear SPH200D Multiple Directory Traversal Vulnerabilities_2 S
Netgear SPH200D Multiple Scripts Cross-Site Scripting Vulnerability S
Netgear SPH200D Path Disclosure Vulnerability S
Novell eDirectory CVE-2012-0432 Buffer Overflow Vulnerability (gen_shell_exec) S
Novell eDirectory CVE-2012-0432 Buffer Overflow Vulnerability (Linux_adduser) S
Oracle Identity Management 10g Cross Site Scripting S
Oracle Java SE CVE-2012-5076 Remote Java Runtime Environment Vulnerability S
Oracle Java SE CVE-2012-5088 Remote Java Runtime Environment Vulnerability S
Oracle WebCenter Sites FatWire Content Server Cross-Site Request Forgery Vulnerability S
Oracle WebCenter Sites FatWire Content Server Cross-Site Scripting Vulnerability S
Oracle WebCenter Sites FatWire Content Server Cross-Site Scripting Vulnerability_1 S
Oracle WebCenter Sites FatWire Content Server SQL Injection Vulnerability S
PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability S
Portable SDK for UPnP Devices (libupnp) SSDP Buffer Overflow Vulnerability (gen_bind_netcat) S
Portable SDK for UPnP Devices (libupnp) SSDP Buffer Overflow Vulnerability (gen_exec) S
Samsung Kies Air CVE-2012-5859 DoS Vulnerability S
Samsung Kies CVE-2012-6429 Remote Buffer Overflow Vulnerability S
Serva DNS Server Denial of Service Vulnerability S
Serva HTTP Server Denial of Service Vulnerability S
Sitecom WLM-2501 CSRF Vulnerability S
SMB Adobe Photoshop CS6 PNG Parsing Heap Overflow S
SMB Adobe Reader CoolType WriteAV Vulnerability S
SMB Adobe Reader JP2KLib WriteAV Vulnerability S
SMB Apple QuickTime CVE-2012-3755 Buffer Overflow Vulnerability S
SMB Media Player Classic MPEG4 Heap Overflow Vulnerability S
SMB Microsoft Office Excel 2010 Memory Corruption S
SMB Microsoft Office OneNote 2010 WriteAV Vulnerability S
SMB Microsoft Office Word 2010 Crash Vulnerability S
SMB Microsoft Visio 2010 Memory Corruption Vulnerability S
SMB PLIB 'ulSetError()' Function Remote Buffer Overflow Vulnerability S
SMB RealPlayer RealMedia File Handling Buffer Overflow S
SMB VLC Media Player Denial of Service Vulnerability S
SnackAmp '.aiff' File Denial of Service Vulnerability S
SonicWall AntiSpam & EMail Cross Site Scripting Vulnerabilities S
SonicWall AntiSpam & EMail Cross Site Scripting Vulnerabilities_1 S
SonicWall AntiSpam & EMail Cross Site Scripting Vulnerabilities_2 S
squidGuard Long URL Handling Remote Denial of Service Vulnerability S
VLC Media Player Denial of Service Vulnerability S
VMware OVF Tool CVE-2012-3569 Format String Vulnerability (gen_shell_bind_tcp) S
VMware OVF Tool CVE-2012-3569 Format String Vulnerability (MessageBox) S
VMware OVF Tool CVE-2012-3569 Format String Vulnerability (win_exec) S
Wordpress Display Theme Full Path Disclosure Vulnerability S
Wordpress Dynamic Font Replacement 1.3 plugin SQL Injection Vulnerability S
Wordpress Eggo Theme Full Path Disclosure Vulnerability S
Wordpress Massimo Theme Full Path Disclosure Vulnerability S
Wordpress Slash Theme Full Path Disclosure Vulnerability S
WordPress SolveMedia CSRF Vulnerability S
Wordpress Striking Theme Full Path Disclosure Vulnerability S
Zoom Player JPEG File Processing Remote Code Execution Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.