Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Check Point Threat Center

Breaking News

12-Apr-2013: Microsoft's update rollup for April fixes a critical remote code execution vulnerability in the Remote Desktop Client, a denial of service issue in Active Directory's LDAP functionality, as well as several other issues in Internet Explorer, Office, and other Microsoft applications.

Top Protections

Check Point Update Services Overview

In a constantly changing threat environment, defenses must evolve with or ahead of threats. Check Point Update Services provide real-time defense updates and configuration advice for IPS, URL Filtering, Antivirus & Anti-Malware, Anti-Spam & Email Security Security Service Software Blades. Also covered by Update Services are SmartDefense in NGX VPN-1, VSX, IPS-1, Connectra, Endpoint Security On Demand, and Endpoint Security products.

Key Benefits

  • Pre-emptive Protection - Keep your defenses current between your regularly-scheduled product upgrades and security patches.
  • Easy Management - Update your whole system in minutes. Each update comes with full configuration instructions and information about the associated threat.
  • IPS, Web security, Antivirus, Anti-Malware, Web filtering, and Anti-Spam protection - Get the latest signatures and detection methods.
  • Program Advisor - Update Check Point Endpoint Security with recommendations for application control for your endpoint computers.
  • 24x7 Threat Coverage - Check Point Security products are supported by multiple Check Point Research and Response Centers around the globe that provided the best Microsoft vulnerability threat coverage amongst leading security vendors.

Malware Resources

Protect Better!

Protect Better!

12 easy steps for boosting your organization's protection against malware

Malware Removal Resources

Malware Removal Resources

Malware-fighting utilities and recommendations on how to use them

Have an Infected Machine?

Have an Infected Machine?

Find out how to identify and clean up malware and bot-infected computers

Get the Rescue CD Get the Rescue CD – designed to scan, disinfect and restore infected machines that can't be disinfected with conventional malware removal tools

Latest Protections

Severity Date Check Point
Reference		 Industry
Reference		 Description
CPAI-2013-1827 CVE-2013-3336
 		Adobe ColdFusion Directory Traversal Information Disclosure (APSA13-03; CVE-2013-3336)
CPAI-2013-1802 CVE-2012-0124
 		HP Data Protector Create New Folder Buffer Overflow (CVE-2012-0124)
CPAI-2013-1607   ActiveFax (ActFax) 4.3 Client Importer Buffer Overflow
CPAI-2013-1330 CVE-2011-2595
 		ACDSee FotoSlate PLP File id Parameter Overflow (CVE-2011-2595)
CPAI-2013-1823 CVE-2013-1302
 		Preemptive Protection against Microsoft Lync Remote Code Execution (MS13-035; CVE-2013-1302)
CPAI-2013-1821 CVE-2013-1336
 		Microsoft .NET XML Digital Signature Spoofing (MS13-040; CVE-2013-1336)
CPAI-2013-1820 CVE-2013-1312
 		Internet Explorer Deleted Object Code Execution (MS13-037; CVE-2013-1312)
CPAI-2013-1819 CVE-2013-1310 Internet Explorer Layout Use-after-free Code Execution (MS13-037; CVE-2013-1310)
CPAI-2013-1818 CVE-2013-1307 Internet Explorer Initialization Error Use-after-free (MS13-037; CVE-2013-1307)
CPAI-2013-1817 CVE-2013-1311
 		Internet Explorer Deleted Object Use-after-free (MS13-037; CVE-2013-1311)
CPAI-2013-1816 CVE-2013-1306
 		Internet Explorer Caching Use-after-free (MS13-037; CVE-2013-1306)
CPAI-2013-1815 CVE-2013-1305
 		Microsoft Windows HTTP.sys Denial of Service (MS13-039; CVE-2013-1305)
CPAI-2013-1700 CVE-2013-1301
 		Microsoft Visio SVG File Information Disclosure (MS13-044; CVE-2013-1301)
CPAI-2013-1696 CVE-2013-1309
 		Internet Explorer CDispNode Use-after-free (MS13-037; CVE-2013-1309)
CPAI-2013-1695 CVE-2013-2551
 		Internet Explorer VML Objects Use After Free (MS13-037; CVE-2013-2551)
CPAI-2013-1694 CVE-2013-1308
 		Internet Explorer CMarkupTransNavContext Use After Free (MS13-037; CVE-2013-1308)
CPAI-2013-1692 CVE-2013-1297
 		Internet Explorer Json Information Disclosure (MS13-037; CVE-2013-1297)
CPAI-2013-1340 CVE-2013-0096
 		Windows Live Essentials Improper URI Handling Vulnerability (MS13-045; CVE-2013-0096)
CPAI-2013-1803   Brobot Booter Script Suite DDoS tool
CPAI-2013-1702 CVE-2013-1347
 		Microsoft Internet Explorer 8 Use After Free Code Execution - Zero Day (CVE-2013-1347)
CPAI-2013-1693 CVE-2007-0213
 		Microsoft Exchange Server MIME Base64 Decoding Code Execution (MS07-026; CVE-2007-0213) - Improved Performance
CPAI-2013-1691   PHP Code Inside GIF Image
CPAI-2013-1690   WordPress HTTP Brute Force Login Attempt
CPAI-2013-1689   Toxin Based Brobot HTTP Requests
CPAI-2013-088 CVE-2012-5689
 		ISC BIND DNS64 RPZ Assertion Failure Denial of Service (CVE-2012-5689)
CPAI-2012-792   Oracle Java Font Parsing maxPoints Heap Buffer Overflow
CPAI-2013-1685 CVE-2013-2423
 		Java Applet Reflection Type Confusion Remote Code Execution (CVE-2013-2423)
CPAI-2013-1674 CVE-2012-5612
 		Oracle MySQL DELETE Heap Buffer Overflow Improved Performance (CVE-2012-5612)
CPAI-2013-1681 CVE-2013-0930
 		EMC AlphaStor Device Manager Buffer Overflow - High Confidence (CVE-2013-0930)
CPAI-2013-1302 CVE-2013-0930
 		EMC AlphaStor Device Manager Buffer Overflow (CVE-2013-0930)
CPAI-2013-1677 CVE-2012-3754
 		Apple QuickTime ActiveX Control Clear Method Use After Free - Improved Performance (CVE-2012-3754)
CPAI-2013-1603 CVE-2012-0021
 		Apache HTTPD mod_log_config Cookie Handling Denial of Service - High Confidence (CVE-2012-0021)
CPAI-2013-1675 CVE-2005-1988
 		Microsoft Internet Explorer JPEG Rendering Buffer Overflow (MS05-038; CVE-2005-1988) - High Confidence
CPAI-2013-1665 CVE-2012-3753
 		Apple QuickTime Plugin Content-Type Buffer Overflow - Improved Performance (CVE-2012-3753)
CPAI-2013-1662 CVE-2012-3756
 		Apple QuickTime rnet Box Parsing Heap Buffer Overflow - Improved Performance (CVE-2012-3756)
CPAI-2013-1673 CVE-2013-2555
 		Adobe Flash Player RTMP Code Execution (APSB13-11; CVE-2013-2555)
CPAI-2013-1658 CVE-2012-6274
 		BigAnt Server DUPF Command Arbitrary File Upload (CVE-2012-6274)
CPAI-2012-1292 CVE-2012-5703
 		VMware ESX and ESXi Server SOAP Request Handling Denial Of Service (CVE-2012-5703)
CPAI-2013-1669 CVE-2013-0657
 		Schneider Electric Interactive Graphical SCADA System Buffer Overflow - Improved Performance (CVE-2013-0657)
CPAI-2013-1664 CVE-2009-2524
 		Microsoft LSASS Authentication Process Integer Overflow (MS09-059; CVE-2009-2524) - high confidence
CPAI-2013-1654 CVE-2012-4170
 		Adobe Photoshop PNG Image Processing Buffer Overflow - Improved Performance (CVE-2012-4170)
CPAI-2013-1660   Contaware FreeVimager GIF LZWMinimumCodeSize Memory Corruption - Improved Performance
CPAI-2013-1604 CVE-2012-4822
 		IBM Java Multiple Packages Sandbox Breach (CVE-2012-4822)
CPAI-2013-1657 CVE-2007-6435
 		Novell GroupWise Client IMG Tag SRC Parameter Buffer Overflow - High Confidence (CVE-2007-6435)
CPAI-2013-1650 CVE-2012-4711
 		WellinTech KingView KingMess Log File Parsing Buffer Overflow (CVE-2012-4711)
CPAI-2013-1652   BIND 9 DNS Server Dynamic Update Denial of Service - High Confidnce
CPAI-2013-1648 CVE-2013-1289
 		Microsoft HTML Sanitization Cross Site Scripting (MS13-035; CVE-2013-1289)
CPAI-2013-1646 CVE-2009-0234
 		Microsoft DNS Server Validation Spoofing (MS09-008; CVE-2009-0234) - High Confidence
CPAI-2013-1645 CVE-2013-1282
 		Microsoft Active Directory LDAP Request Memory Consumption (MS13-032; CVE-2013-1282)
CPAI-2013-1644 CVE-2013-0074
 		Microsoft Silverlight Pointer Dereference Memory Corruption (MS13-022; CVE-2013-0074)
CPAI-2013-1643 CVE-2013-1296
 		Microsoft Windows RDP ActiveX Control Remote Code Execution (MS13-029; CVE-2013-1296)
CPAI-2013-1315 CVE-2012-4823
 		IBM Java java.lang.ClassLoader.defineClass Sandbox Breach (CVE-2012-4823)
CPAI-2012-834   UMPlayer wintab32.dll Insecure Library Loading
CPAI-2013-1640 CVE-2012-3284
 		HP LeftHand Virtual SAN Appliance hydra SNMP Processing Buffer Overflow (CVE-2012-3284)
CPAI-2013-1599   Microsoft Internet Explorer Mouse Movement Information Disclosure
CPAI-2013-027   Simple Web Server Connection Header Buffer Overflow
CPAI-2013-1335 CVE-2013-0431
 		Oracle Java JMX findClass and elementFromComplex Sandbox Breach (CVE-2013-0431)
CPAI-2013-089   Advantech WebAccess HMI and SCADA Software Cross-Site Scripting
CPAI-2013-1651 CVE-2012-3283
 		HP LeftHand Virtual SAN Appliance hydra Diag Processing Buffer Overflow (CVE-2012-3283)
CPAI-2013-1326 CVE-2013-1489
 		Oracle Java Security Slider Feature Bypass (CVE-2013-1489)

Archives

Product Updates

Security Gateway 

VSX 

IPS-1 

Microsoft Security

Microsoft Security Bulletins 2012 in Check Point Advisories

Microsoft Security Bulletin MS12-002

  1. CPAI-2012-016
    Microsoft Windows Object Packager Insecure Executable Launching (MS12-002; CVE-2012-0009)

Microsoft Security Bulletin MS12-004

  1. CPAI-2012-014
    Microsoft Windows Media Player MIDI Code Execution (MS12-004; CVE-2012-0003)
  2. CPAI-2012-019
    Microsoft Windows DirectShow Filters Remote Code Execution (MS12-004; CVE-2012-0004)

Microsoft Security Bulletin MS12-005

  1. CPAI-2012-018
    Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013)
  2. CPAI-2013-1338
    Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013) - High Confidence

Microsoft Security Bulletin MS12-006

  1. CPAI-2012-020
    Preemptive Protection against SSL and TLS Protocols Information Disclosure (MS12-006; CVE-2011-3389)

Microsoft Security Bulletin MS12-007

  1. CPAI-2012-017
    Microsoft AntiXSS Library Bypass Information Disclosure (MS12-007; CVE-2012-0007)

Microsoft Security Bulletin MS12-008

  1. CPAI-2012-013
    Microsoft Windows Win32k.sys Malformed IFrame Memory Corruption (MS12-008; CVE-2011-5046)

Microsoft Security Bulletin MS12-010

  1. CPAI-2012-050
    Internet Explorer Null Byte Information Disclosure (MS12-010; CVE-2012-0012)
  2. CPAI-2012-053
    Internet Explorer HtmlLayout Remote Code Execution (MS12-010; CVE-2012-0011)
  3. CPAI-2012-054
    Internet Explorer VML Remote Code Execution (MS12-010; CVE-2012-0155)
  4. CPAI-2012-237
    Microsoft Internet Explorer Copy And Paste Information Disclosure (MS12-010; CVE-2012-0010)

Microsoft Security Bulletin MS12-011

  1. CPAI-2012-047
    Microsoft SharePoint inplview.aspx Cross-Site Scripting (MS12-011; CVE-2012-0017)
  2. CPAI-2012-048
    Microsoft SharePoint themeweb.aspx Cross-Site Scripting (MS12-011; CVE-2012-0144)
  3. CPAI-2012-049
    Microsoft SharePoint wizardlist.aspx Cross-Site Scripting (MS12-011; CVE-2012-0145)

Microsoft Security Bulletin MS12-012

  1. CPAI-2012-051
    Microsoft Color Control Panel Insecure Library Loading (MS12-012; CVE-2010-5082)

Microsoft Security Bulletin MS12-013

  1. CPAI-2012-060
    Microsoft Windows msvcrt.dll Media File Code Execution (MS12-013; CVE-2012-0150)

Microsoft Security Bulletin MS12-014

  1. CPAI-2012-061
    Microsoft Windows Indeo Codec Insecure Library Loading (MS12-014; CVE-2010-3138)

Microsoft Security Bulletin MS12-015

  1. CPAI-2012-052
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0020)
  2. CPAI-2012-055
    Microsoft Visio Viewer VSD File Format Memory Corruption (MS12-015; CVE-2012-0019)
  3. CPAI-2012-057
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0136)
  4. CPAI-2012-058
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0137)
  5. CPAI-2012-059
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0138)

Microsoft Security Bulletin MS12-016

  1. CPAI-2013-1295
    Adobe Flash Player malformed SWF file information disclosure (APSB13-05; CVE-2013-0637)
  2. CPAI-2012-056
    Microsoft.NET and Silevrlight Unmanaged Objects Code Execution (MS12-016; CVE-2012-0014)

Microsoft Security Bulletin MS12-017

  1. CPAI-2012-087
    Microsoft DNS Server Denial of Service (MS12-017; CVE-2012-0006)
  2. CPAI-2013-1308
    Microsoft DNS Server Denial of Service - Specific (MS12-017; CVE-2012-0006)

Microsoft Security Bulletin MS12-020

  1. CPAI-2012-084
    Microsoft Windows Remote Desktop Protocol Code Execution (MS12-020; CVE-2012-0002)
  2. CPAI-2012-099
    Preemptive Protection against Microsoft Terminal Server Denial of Service (MS12-020; CVE-2012-0152)

Microsoft Security Bulletin MS12-021

  1. CPAI-2012-085
    Microsoft Visual Studio Add-In Insecure Library Loading (MS12-021; CVE-2012-0008)
  2. CPAI-2013-1332
    Internet Explorer CElement Use After Free Code Execution (MS13-021; CVE-2013-0091)

Microsoft Security Bulletin MS12-022

  1. CPAI-2012-086
    Microsoft Expression Design Insecure Library Loading (MS12-022; CVE-2012-0016)

Microsoft Security Bulletin MS12-023

  1. CPAI-2012-124
    Internet Explorer OnReadyStateChange Remote Code Execution (MS12-023; CVE-2012-0170)
  2. CPAI-2012-125
    Internet Explorer SelectAll Remote Code Execution (MS12-023; CVE-2012-0171)
  3. CPAI-2012-127
    Internet Explorer VML Style Remote Code Execution (MS12-023; CVE-2012-0172)

Microsoft Security Bulletin MS12-024

  1. CPAI-2012-123
    Microsoft Windows Signature Validation Remote Code Execution (MS12-024; CVE-2012-0151)

Microsoft Security Bulletin MS12-025

  1. CPAI-2012-304
    Microsoft .NET Framework Parameter Validation Code Execution (MS12-025; CVE-2012-0163)

Microsoft Security Bulletin MS12-027

  1. CPAI-2012-129
    Microsoft MSCOMCTL.OCX ActiveX Control Remote Code Execution (MS12-027; CVE-2012-0158)
  2. CPAI-2012-130
    MSCOMCTL.OCX Killbit: 9181DC5F-E07D-418A-ACA6-8EEA1ECB8E9E (MS12-027; CVE-2012-0158)
  3. CPAI-2012-131
    MSCOMCTL.OCX Killbit: C74190B6-8589-11d1-B16A-00C0F0283628 (MS12-027; CVE-2012-0158)
  4. CPAI-2012-132
    MSCOMCTL.OCX Killbit: 996BF5E0-8044-4650-ADEB-0B013914E99C (MS12-027; CVE-2012-0158)
  5. CPAI-2012-133
    MSCOMCTL.OCX Killbit: bdd1f04b-858b-11d1-b16a-00c0f0283628 (MS12-027; CVE-2012-0158)

Microsoft Security Bulletin MS12-028

  1. CPAI-2012-128
    Microsoft Office WPS Converter Heap Overflow (MS12-028; CVE-2012-0177)

Microsoft Security Bulletin MS12-029

  1. CPAI-2012-189
    Microsoft Office RTF Mismatch Memory Corruption (MS12-029; CVE-2012-0183)

Microsoft Security Bulletin MS12-030

  1. CPAI-2012-178
    Microsoft Excel MergeCells Record Heap Overflow (MS12-030; CVE-2012-0185)
  2. CPAI-2012-179
    Microsoft Excel File Format OBJECTLINK Record Memory Corruption (MS12-030; CVE-2012-0142)
  3. CPAI-2012-194
    Microsoft Excel File Format Code Execution (MS12-030; CVE-2012-0141)
  4. CPAI-2012-195
    Microsoft Excel Record Structure Memory Corruption (MS12-030; CVE-2012-0143)
  5. CPAI-2012-197
    Microsoft Excel SXLI Record Memory Corruption (MS12-030; CVE-2012-0184)
  6. CPAI-2012-215
    Microsoft Excel SERIES Record Parsing Code Execution (MS12-030; CVE-2012-1847)

Microsoft Security Bulletin MS12-031

  1. CPAI-2012-261
    Microsoft Visio Viewer VSD File Attributes Validation Error (MS12-031; CVE-2012-0018)

Microsoft Security Bulletin MS12-034

  1. CPAI-2012-180
    Microsoft Windows GDI+ Record Type Code Execution (MS12-034; CVE-2012-0165)
  2. CPAI-2012-190
    Microsoft Windows GDI+ EMF Heap Overflow (MS12-034; CVE-2012-0167)
  3. CPAI-2012-198
    Microsoft Windows Malformed TrueType Font Remote Code Execution (MS12-034; CVE-2012-0159)
  4. CPAI-2012-199
    Microsoft Silverlight Double-Free Remote Code Execution (MS12-034; CVE-2012-0176)
  5. CPAI-2012-200
    Microsoft .NET Framework XBAP Buffer Allocation Code Execution (MS12-034; CVE-2012-0162)

Microsoft Security Bulletin MS12-035

  1. CPAI-2012-241
    Microsoft .NET Framework Serialization Code Execution (MS12-035; CVE-2012-0161)
  2. CPAI-2012-242
    Microsoft .NET Framework Serialization Data Validation Error (MS12-035; CVE-2012-0160)

Microsoft Security Bulletin MS12-037

  1. CPAI-2012-248
    Internet Explorer Same ID Property Remote Code Execution (MS12-037; CVE-2012-1875)
  2. CPAI-2012-249
    Internet Explorer Process Memory Information Disclosure (MS12-037; CVE-2012-1873)
  3. CPAI-2012-251
    Internet Explorer Col Element Remote Code Execution (MS12-037; CVE-2012-1876)
  4. CPAI-2012-252
    Internet Explorer OnRowsInserted Event Remote Code Execution (MS12-037; CVE-2012-1881)
  5. CPAI-2012-253
    Internet Explorer insertRow Remote Code Execution (MS12-037; CVE-2012-1880)
  6. CPAI-2012-256
    Internet Explorer Title Element Change Remote Code Execution (MS12-037; CVE-2012-1877)
  7. CPAI-2012-257
    Internet Explorer OnBeforeDeactivate Event Remote Code Execution (MS12-037; CVE-2012-1878)
  8. CPAI-2012-258
    Internet Explorer insertAdjacentText Remote Code Execution (MS12-037; CVE-2012-1879)
  9. CPAI-2012-262
    Internet Explorer Center Element Remote Code Execution (MS12-037; CVE-2012-1523)
  10. CPAI-2012-264
    Internet Explorer Developer Toolbar Remote Code Execution (MS12-037; CVE-2012-1874)

Microsoft Security Bulletin MS12-038

  1. CPAI-2012-259
    Microsoft .NET Framework Function Pointer Remote Code Execution (MS12-038; CVE-2012-1855)

Microsoft Security Bulletin MS12-039

  1. CPAI-2012-254
    Microsoft Lync Insecure Library Loading Code Execution (MS12-039; CVE-2012-1849)
  2. CPAI-2012-255
    Internet Explorer HTML Sanitization Information Disclosure (MS12-039; CVE-2012-1858)

Microsoft Security Bulletin MS12-040

  1. CPAI-2012-260
    Microsoft Dynamic AX Enterprise Portal Cross-site Scripting (MS12-040; CVE-2012-1857)

Microsoft Security Bulletin MS12-043

  1. CPAI-2012-308
    Preemptive Protection against Microsoft XML Uninitialized Memory Corruption (MS12-043; CVE-2012-1889)

Microsoft Security Bulletin MS12-044

  1. CPAI-2012-301
    Internet Explorer Cached Object Remote Code Execution (MS12-044; CVE-2012-1522)
  2. CPAI-2012-305
    Internet Explorer Attribute Remove Remote Code Execution (MS12-044; CVE-2012-1524)

Microsoft Security Bulletin MS12-045

  1. CPAI-2012-303
    Microsoft Data Access Components ADO Cachesize Heap Overflow (MS12-045; CVE-2012-1891)

Microsoft Security Bulletin MS12-046

  1. CPAI-2012-263
    Microsoft Visual Basic for Applications Insecure Library Loading (MS12-046; CVE-2012-1854)

Microsoft Security Bulletin MS12-048

  1. CPAI-2012-307
    Microsoft Windows File and Directory Name Command Injection (MS12-048; CVE-2012-0175)

Microsoft Security Bulletin MS12-050

  1. CPAI-2012-302
    Microsoft SharePoint Reflected List Parameter XSS (MS12-050; CVE-2012-1863)
  2. CPAI-2012-306
    Microsoft SharePoint XSS scriptresx.ashx Elevation of Privilege (MS12-050; CVE-2012-1859)
  3. CPAI-2012-309
    Preemptive Protection against Microsoft SharePoint HTML Sanitization Cross-site Scripting (MS12-050; CVE-2012-1858)
  4. CPAI-2012-310
    Microsoft SharePoint Script in Username Cross-site Scripting (MS12-050; CVE-2012-1861)

Microsoft Security Bulletin MS12-052

  1. CPAI-2012-340
    Internet Explorer Layout Memory Corruption (MS12-052; CVE-2012-1526)
  2. CPAI-2012-342
    Internet Explorer NULL Object Access Remote Code Execution (MS12-052; CVE-2012-2521)
  3. CPAI-2012-343
    Internet Explorer Virtual Function Table Corruption Remote Code Execution (MS12-052; CVE-2012-2522)

Microsoft Security Bulletin MS12-053

  1. CPAI-2012-350
    Microsoft Remote Desktop Protocol Freed Memory Access (MS12-053; CVE-2012-2526)

Microsoft Security Bulletin MS12-054

  1. CPAI-2012-339
    Microsoft Remote Administration Protocol Denial of Service (MS12-054; CVE-2012-1850)
  2. CPAI-2012-349
    Microsoft Windows Print Spooler Format String Code Execution (MS12-054; CVE-2012-1851)
  3. CPAI-2012-351
    Microsoft Remote Administration Protocol Heap and Stack Overflow (MS12-054; CVE-2012-1852, CVE-2012-1853)

Microsoft Security Bulletin MS12-056

  1. CPAI-2012-341
    Internet Explorer JavaScript Integer Overflow Remote Code Execution (MS12-056; CVE-2012-2523)

Microsoft Security Bulletin MS12-057

  1. CPAI-2012-397
    Preemptive protection against Microsoft CGM File Format Memory Corruption (MS12-057; CVE-2012-2524)

Microsoft Security Bulletin MS12-059

  1. CPAI-2012-348
    Microsoft Visio DXF File Parsing Code Execution (MS12-059; CVE-2012-1888)

Microsoft Security Bulletin MS12-060

  1. CPAI-2012-347
    Microsoft Windows Common Controls Remote Code Execution (MS12-060; CVE-2012-1856)

Microsoft Security Bulletin MS12-061

  1. CPAI-2012-409
    Microsoft Visual Studio Team Foundation Server XSS (MS12-061; CVE-2012-1892)

Microsoft Security Bulletin MS12-062

  1. CPAI-2012-405
    Microsoft SCCM Reflected Cross-site Scripting (MS12-062; CVE-2012-2536)

Microsoft Security Bulletin MS12-063

  1. CPAI-2012-604
    Internet Explorer OnMove Use After Free Remote Code Execution (MS12-063; CVE-2012-1529)
  2. CPAI-2012-605
    Internet Explorer Event Listener Remote Code Execution (MS12-063; CVE-2012-2546)
  3. CPAI-2012-606
    Internet Explorer Layout Use After Free Remote Code Execution (MS12-063; CVE-2012-2548)
  4. CPAI-2012-607
    Internet Explorer cloneNode Use After Free Remote Code Execution (MS12-063; CVE-2012-2557)

Microsoft Security Bulletin MS12-064

  1. CPAI-2012-611
    Microsoft Word PAPX Section Corruption Remote Code Execution (MS12-064; CVE-2012-0182)
  2. CPAI-2012-629
    Microsoft Office RTF File listid Use-After-Free Code Execution (MS12-064; CVE-2012-2528)

Microsoft Security Bulletin MS12-065

  1. CPAI-2012-630
    Microsoft Works RTF Heap Remote Code Execution (MS12-065; CVE-2012-2550)

Microsoft Security Bulletin MS12-069

  1. CPAI-2012-642
    Microsoft Kerberos NULL Dereference Denial of Service (MS12-069; CVE-2012-2551)

Microsoft Security Bulletin MS12-070

  1. CPAI-2012-631
    Microsoft SQL Server Report Manager Elevation of Privilege (MS12-070; CVE-2012-2552)

Microsoft Security Bulletin MS12-071

  1. CPAI-2012-803
    Microsoft Internet Explorer CTreePos Use After Free (MS12-071; CVE-2012-1539)
  2. CPAI-2012-805
    Microsoft Internet Explorer CFormElement Use After Free (MS12-071; CVE-2012-1538)
  3. CPAI-2012-807
    Microsoft Internet Explorer CTreeNode Use After Free (MS12-071; CVE-2012-4775)

Microsoft Security Bulletin MS12-072

  1. CPAI-2012-808
    Microsoft Windows Briefcase Integer Underflow (MS12-072; CVE-2012-1527; CVE-2012-1528)

Microsoft Security Bulletin MS12-074

  1. CPAI-2012-793
    Microsoft .NET Framework Insecure Library Loading Code Execution (MS12-074; CVE-2012-2519)
  2. CPAI-2012-804
    Microsoft .Net Framework Web Proxy Auto-Discovery Code Execution (MS12-074; CVE-2012-4776)

Microsoft Security Bulletin MS12-075

  1. CPAI-2012-806
    Microsoft Windows Font Parsing Remote Code Execution (MS12-075; CVE-2012-2897)

Microsoft Security Bulletin MS12-076

  1. CPAI-2012-790
    Microsoft Excel Malformed File Memory Corruption (MS12-076; CVE-2012-1886)
  2. CPAI-2012-795
    Microsoft Excel Modified Data Structure Stack Overflow (MS12-076; CVE-2012-2543)
  3. CPAI-2012-802
    Microsoft Excel SST Invalid Length Use After Free (MS12-076; CVE-2012-1887)
  4. CPAI-2012-402
    Microsoft Excel SerAuxErrBar Heap Overflow (MS12-076; CVE-2012-1885)

Microsoft Security Bulletin MS12-077

  1. CPAI-2012-1252
    Internet Explorer Improper Ref Counting Use After Free (MS12-077; CVE-2012-4787)

Microsoft Security Bulletin MS12-078

  1. CPAI-2012-1279
    Microsoft Windows OpenType Font Parsing Remote Code Execution (MS12-078; CVE-2012-2556)
  2. CPAI-2012-1291
    Microsoft Windows TrueType Font Parsing Remote Code Execution (MS12-078; CVE-2012-4786)

Microsoft Security Bulletin MS12-079

  1. CPAI-2012-1139
    Microsoft Word RTF listoverridecount Remote Code Execution (MS12-079; CVE-2012-2539)

Microsoft Security Bulletin MS12-081

  1. CPAI-2012-788
    Microsoft Windows Filename Parsing Remote Code Execution (MS12-081; CVE-2012-4774)

Microsoft Security Bulletin MS12-082

  1. CPAI-2012-1254
    Microsoft DirectPlay CLSID_DP8SP_MODEM (MS12-082; CVE-2012-1537)
  2. CPAI-2012-1256
    Microsoft DirectPlay CLSID_DP8SP_SERIAL (MS12-082; CVE-2012-1537)
  3. CPAI-2012-1257
    Microsoft DirectPlay CLSID_DirectPlay8Peer (MS12-082; CVE-2012-1537)
  4. CPAI-2012-1258
    Microsoft DirectPlay CLSID_DirectPlay8Client (MS12-082; CVE-2012-1537)
  5. CPAI-2012-1259
    Microsoft DirectPlay CLSID_DirectPlay8LobbyClient (MS12-082; CVE-2012-1537)
  6. CPAI-2012-1260
    Microsoft DirectPlay CLSID_DirectPlay8LobbiedApplication (MS12-082; CVE-2012-1537)
  7. CPAI-2012-1261
    Microsoft DirectPlay CLSID_DirectPlay8Address (MS12-082; CVE-2012-1537)
  8. CPAI-2013-016
    Microsoft DirectPlay Office File Handling Invalid Memory Free (MS12-082; CVE-2012-1537)