2015 Advisories Archive

Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 6 Jul 2015 6 Jul 2015 CPAI-2015-0589

Asterisk AST-2015-003

CVE-2015-3008

Digium Asterisk TLS Certificate Common Name NULL Byte Input Validation Error (CVE-2015-3008)
High 6 Jul 2015 6 Jul 2015 CPAI-2015-0494

OpenSSL Project secadv_20150319

CVE-2015-0286

OpenSSL ASN1_TYPE_cmp Denial of Service (CVE-2015-0286)
Critical 6 Jul 2015 6 Jul 2015 CPAI-2015-0678 PDF Containing Unsupported Filter
Critical 6 Jul 2015 6 Jul 2015 CPAI-2015-0683

CVE-2015-2336

VMware JPEG2000 Stack Overflow (CVE-2015-2336)
High 6 Jul 2015 6 Jul 2015 CPAI-2015-0401

CVE-2014-5360

LANDesk Management Suite AMTVersion Cross-Site Scripting (CVE-2014-5360)
Critical 6 Jul 2015 6 Jul 2015 CPAI-2015-0670

Adobe Security Bulletin APSB15-11

CVE-2015-3102

Adobe Flash Player custom pageDomain vulnerability (APSB15-11; CVE-2015-3102)
High 6 Jul 2015 6 Jul 2015 CPAI-2015-0681

Novell

CVE-2015-0784

Novell ZENworks Configuration Management Session ID Information Disclosure (CVE-2015-0784)
Critical 6 Jul 2015 6 Jul 2015 CPAI-2015-0679 PDF Containing Multiple Filters
Critical 2 Jul 2015 2 Jul 2015 CPAI-2013-090 Sourcefire Snort rule20275eval Buffer Overflow
High 2 Jul 2015 2 Jul 2015 CPAI-2015-0589

Asterisk AST-2015-003

Digium Asterisk TLS Certificate Common Name NULL Byte Input Validation Error (CVE-2015-3008)
Critical 2 Jul 2015 2 Jul 2015 CPAI-2015-0602

Microsoft Security Bulletin MS15-056

Microsoft Internet Explorer Memory Corruption (MS15-056: CVE-2015-1752; CVE-2015-1752)
Critical 2 Jul 2015 2 Jul 2015 CPAI-2015-0679 PDF Containing Multiple Filters
Critical 2 Jul 2015 2 Jul 2015 CPAI-2015-0678 PDF Containing Unsupported Filter
Critical 2 Jul 2015 2 Jul 2015 CPAI-2014-2298

Adobe Security Bulletin APSB14-27

Adobe Flash Player Stack Buffer Overflow (CVE-2014-9163; CVE-2014-9163)
Critical 2 Jul 2015 2 Jul 2015 CPAI-2015-0683 VMware JPEG2000 Stack Overflow (CVE-2015-2336)
High 2 Jul 2015 2 Jul 2015 CPAI-2015-0401 LANDesk Management Suite AMTVersion Cross-Site Scripting (CVE-2014-5360)
High 30 Jun 2015 30 Jun 2015 CPAI-2015-0690 CVE-2015-4024
PHP Multipart Remote Denial of Service (CVE-2015-4024)
Critical 29 Jun 2015 29 Jun 2015 CPAI-2015-0689 ESET NOD32 Anti-Virus Emulation Remote Code Execution
Critical 24 Jun 2015 24 Jun 2015 CPAI-2015-0682 CVE-2015-3113
Adobe Flash Player Heap Buffer Overflow (APSB15-14; CVE-2015-3113)
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0667 OsCommerce Configuration SQL Injection Attempt
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0659 OsCommerce Configuration Cross-Site Scripting
Medium 23 Jun 2015 23 Jun 2015 CPAI-2015-0660 Novell CVE-2015-0783
Novell ZENworks Configuration Management FileViewer Information Disclosure (CVE-2015-0783)
Medium 23 Jun 2015 23 Jun 2015 CPAI-2015-0661 Novell CVE-2015-0785
Novell ZENworks Configuration Management DirectoryViewer Information Disclosure (CVE-2015-0785)
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0566 MIT CVE-2014-5355
MIT Kerberos 5 recvauth Denial Of Service (CVE-2014-5355)
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0553 Digium AST-2014-009 CVE-2014-6609
Digium Asterisk res_pjsip_pubsub Module SIP SUBSCRIBE Type Confusion Denial of Service (CVE-2014-6609)
Critical 23 Jun 2015 23 Jun 2015 CPAI-2015-0656

Adobe Security Bulletin APSB15-11

CVE-2015-3106

Adobe Flash Player Use After Free Code Execution (APSB15-11; CVE-2015-3106)
Critical 23 Jun 2015 23 Jun 2015 CPAI-2015-0664 Adobe Security Bulletin APSB15-11 CVE-2015-3108
Adobe Flash Player Memory Leak (APSB15-11; CVE-2015-3108)
Critical 23 Jun 2015 23 Jun 2015 CPAI-2015-0645 Adobe Security Bulletin APSB15-09 CVE-2015-3093
Adobe Flash Player Memory Corruption (APSB15-09; CVE-2015-3093)
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0662 OsCommerce Cross-Site Request Forgery Administrator Creation
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0648 OsCommerce Cross-Site Request Forgery Administrator Deletion
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0663 OsCommerce Mail Cross-Site Scripting Attempt
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0658 Steganography Over JPEG
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0675 Shodan Scanner SIP Request
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0674 Shodan Scanner ISAKMP Request
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0673 Shodan Scanner GTP Request
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0671 Shodan Scanner ENIP Request
High 23 Jun 2015 23 Jun 2015 CPAI-2015-0669 Shodan Scanner BACNET Request
Critical 23 Jun 2015 23 Jun 2015 CPAI-2015-0672 Metasploit SAP NetWeaver Portal ConfigServlet Remote Command Execution
Critical 23 Jun 2015 23 Jun 2015 CPAI-2015-0400 Non Compliant UUencoded SMTP
Medium 17 Jun 2015 17 Jun 2015 CPAI-2015-0621 CVE-2015-2094
WebGate Multiple Products WESPPlaybackCtrl Two Stack Buffer Overflow (CVE-2015-2094)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0445 Web Clients HTTP URL HTML Entity Cross-Site Scripting
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0277 Web Clients HTTP URL Escape Sequence Cross-Site Scripting
High 17 Jun 2015 17 Jun 2015 CPAI-2015-0634 PowerDNS.COM BV CVE-2015-1868
PowerDNS Nameserver Label Decompression Denial of Service (CVE-2015-1868)
High 17 Jun 2015 17 Jun 2015 CPAI-2015-0568 Microsoft Security Bulletin MS15-053 CVE-2015-1684
Microsoft Internet Explorer VBScript Memory Corruption (MS15-053; CVE-2015-1684)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0636

Adobe Security Bulletin APSB15-10

CVE-2015-3076

Adobe Reader and Acrobat Memory Corruption (APSB15-10; CVE-2015-3076)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0569

Adobe Security Bulletin APSB15-10

CVE-2014-9161

Adobe Reader and Acrobat Memory Corruption (APSB15-10; CVE-2014-9161)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0616 Adobe Security Bulletin APSB15-09 CVE-2015-3081
Adobe Flash Time of Check Time of Use Race Condition (APSB15-09; CVE-2015-3081)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0615 Adobe Security Bulletin APSB15-09 CVE-2015-3085
CVE-2015-3082
Adobe Flash Player Validation Bypass (APSB15-09; CVE-2015-3085; CVE-2015-3082)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0618 Adobe Security Bulletin APSB15-09 CVE-2015-3083
Adobe Flash Player Validation Bypass (APSB15-09; CVE-2015-3083)
Critical 17 Jun 2015 17 Jun 2015 CPAI-2015-0654 Adobe Security Bulletin APSB15-06 CVE-2015-3103
Adobe Flash Player Use After Free Remote Code Execution (APSB15-11; CVE-2015-3103)