Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Check Point Threat Center

Breaking News

12-Feb-2013: The February Microsoft product update set includes fixes for multiple "use after free" critical vulnerabilities in Internet Explorer, as well as security patches for several other Microsoft products.

Top Protections

Check Point Update Services Overview

In a constantly changing threat environment, defenses must evolve with or ahead of threats. Check Point Update Services provide real-time defense updates and configuration advice for IPS, URL Filtering, Antivirus & Anti-Malware, Anti-Spam & Email Security Security Service Software Blades. Also covered by Update Services are SmartDefense in NGX VPN-1, VSX, IPS-1, Connectra, Endpoint Security On Demand, and Endpoint Security products.

Key Benefits

  • Pre-emptive Protection - Keep your defenses current between your regularly-scheduled product upgrades and security patches.
  • Easy Management - Update your whole system in minutes. Each update comes with full configuration instructions and information about the associated threat.
  • IPS, Web security, Antivirus, Anti-Malware, Web filtering, and Anti-Spam protection - Get the latest signatures and detection methods.
  • Program Advisor - Update Check Point Endpoint Security with recommendations for application control for your endpoint computers.
  • 24x7 Threat Coverage - Check Point Security products are supported by multiple Check Point Research and Response Centers around the globe that provided the best Microsoft vulnerability threat coverage amongst leading security vendors.

Malware Resources

Protect Better!

Protect Better!

12 easy steps for boosting your organization's protection against malware

Malware Removal Resources

Malware Removal Resources

Malware-fighting utilities and recommendations on how to use them

Have an Infected Machine?

Have an Infected Machine?

Find out how to identify and clean up malware and bot-infected computers

Get the Rescue CD Get the Rescue CD – designed to scan, disinfect and restore infected machines that can't be disinfected with conventional malware removal tools

Latest Protections

Severity Date Check Point
Reference		 Industry
Reference		 Description
CPAI-2013-1624 CVE-2011-4063
 		Digium Asterisk SIP Channel Driver Denial Of Service - High Confidence (CVE-2011-4063)
CPAI-2013-1633 CVE-2008-1434
 		Microsoft Word CSS Processing Code Execution - Improved Performance (MS08-026; CVE-2008-1434)
CPAI-2013-1313 CVE-2013-0006
 		Microsoft XML Core Services Integer Truncation Memory Corruption (MS13-002; CVE-2013-0006)
CPAI-2013-1625 CVE-2012-3526
 		Apache HTTP Server mod_rpaf x-forwarded-for Denial of Service - Improved Confidence (CVE-2012-3526)
CPAI-2013-1623 CVE-2012-5470
 		VideoLAN VLC Media Player PNG Code Execution - Improved Performance (CVE-2012-5470)
CPAI-2013-1606   DNS ANY Request
CPAI-2013-1605 CVE-2013-0646
 		Adobe Flash Player ActionScript Heap Overflow (APSB13-09; CVE-2013-0646)
CPAI-2013-1602 CVE-2010-0476
 		Microsoft SMB Response Parsing Memory Corruption (MS10-020; CVE-2010-0476) - High Confidence
CPAI-2013-1598 CVE-2013-1288
 		Internet Explorer CTreeNode Use After Free Remote Code Execution (MS13-021; CVE-2013-1288)
CPAI-2013-1597 CVE-2013-0086
 		Microsoft Office OneNote Parsing Memory Information Disclosure (MS13-025; CVE-2013-0086)
CPAI-2013-1596 CVE-2013-0084
 		Microsoft SharePoint Directory Traversal (MS13-024; CVE-2013-0084)
CPAI-2013-1595 CVE-2013-0092
 		Internet Explorer GetMarkupPtr Use After Free Code Execution (MS13-021; CVE-2013-0092)
CPAI-2013-1594 CVE-2013-0079
 		Microsoft Visio Viewer Tree Object Type Confusion Code Execution (MS13-023; CVE-2013-0079)
CPAI-2013-1593 CVE-2013-0090
 		Internet Explorer CCaret Use After Free Code Execution (MS13-021; CVE-2013-0090)
CPAI-2013-1337 CVE-2013-0094
 		Internet Explorer removeChild Use After Free Code Execution (MS13-021; CVE-2013-0094)
CPAI-2013-1332 CVE-2013-0091
 		Internet Explorer CElement Use After Free Code Execution (MS13-021; CVE-2013-0091)
CPAI-2013-1331 CVE-2013-0088
 		Internet Explorer saveHistory Use After Free Code Execution (MS13-021; CVE-2013-0088)
CPAI-2013-1329 CVE-2013-0083
 		Microsoft SharePoint Web Analytics Cross-Site Scripting (MS13-024; CVE-2013-0083)
CPAI-2013-1328 CVE-2013-0089
 		Internet Explorer CMarkupBehaviorContext use after free (MS13-021; CVE-2013-0089)
CPAI-2013-1324 CVE-2013-1281
 		Microsoft Windows NFS Server NULL Pointer Dereference (MS13-014; CVE-2013-1281)
CPAI-2013-1345 CVE-2013-1493
 		Oracle Java Runtime CMM Code Execution (CVE-2013-1493)
CPAI-2013-1343 CVE-2005-0817
 		Symantec Gateway Products DNS Cache Poisoning - High Confidence (CVE-2005-0817)
CPAI-2013-1342 CVE-2013-0093
 		Internet Explorer CCommand Use After Free (MS13-021; CVE-2013-0093)
CPAI-2013-1341 CVE-2013-0087
 		Internet Explorer OnResize Use After Free Remote Code Execution (MS13-021; CVE-2013-0087)
CPAI-2013-1339 CVE-2013-0080
 		Microsoft SharePoint Callback Function Elevation of Privilege (MS13-024; CVE-2013-0080)
CPAI-2013-1338 CVE-2012-0013
 		Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013) - High Confidence
CPAI-2013-1336 CVE-2013-1593
 		SAP NetWeaver AdIExecBlkConv Message Server Buffer Overflow (CVE-2013-1593)
CPAI-2013-1322 CVE-2013-0002
 		Microsoft .NET Framework WinForms Buffer Overflow (CVE-2013-0002)
CPAI-2013-1321 CVE-2013-0003
 		Microsoft .NET Framework S.DS.P Namespace Method Buffer Overflow (CVE-2013-0003)
CPAI-2013-1320 CVE-2013-0001
 		Microsoft .NET Framework WinForms Information Disclosure (CVE-2013-0001)
CPAI-2013-413 CVE-2012-4347
 		Symantec Messaging Gateway Directory Traversal (CVE-2012-4347)
CPAI-2013-1314 CVE-2012-0677
 		Apple iTunes m3u Playlist Multiple Buffer Overflows - High Confidence (CVE-2012-0677)
CPAI-2013-1311 CVE-2012-5958
 		Portable SDK for UPnP Devices libupnp Device Service Name Stack Buffer Overflow (CVE-2012-5958)
CPAI-2013-1307 CVE-2012-4820
 		IBM Java com.ibm.rmi.util.ProxyUtil Sandbox Breach (CVE-2012-4820)
CPAI-2013-1296 CVE-2013-0638
 		Adobe Flash Player malformed FLV file Flash memory corruption vulnerability (APSB13-05; CVE-2013-0638)
CPAI-2013-1295 CVE-2013-0637
 		Adobe Flash Player malformed SWF file information disclosure (APSB13-05; CVE-2013-0637)
CPAI-2013-093   Adobe InDesign Server SOAP Request Lack of Authentication
CPAI-2013-086 CVE-2013-0393
 		Oracle Outside In Paradox Database Stream Filter Denial of Service (CVE-2013-0393)
CPAI-2013-084 CVE-2013-0625
 		Adobe ColdFusion scheduleedit.cfm Authentication Bypass (CVE-2013-0625)
CPAI-2013-074 CVE-2012-6392
 		Cisco Prime LAN Management Solution Remote Command Execution (CVE-2012-6392)
CPAI-2013-026 CVE-2011-3492
 		SCADA DaqFactory HMI NETB Request Overflow (CVE-2011-3492)
CPAI-2013-012 CVE-2012-5691
 		RealNetworks RealPlayer URL Parsing Stack Buffer Overflow (CVE-2012-5691)
CPAI-2013-010   Nagios history.cgi Parameter Buffer Overflow
CPAI-2012-1335 CVE-2012-4939
 		SolarWinds Orion IPAM Reflected Cross-site Scripting (CVE-2012-4939)
CPAI-2012-1323   Lattice Semiconductor ispVM System XCF File Handling Overflow
CPAI-2012-1282   Novell NetIQ Privileged User Manager modifyAccounts Policy Bypass
CPAI-2013-1327 CVE-2013-0648
 		Adobe Flashplayer Malicious SWF Use After Free Code Execution (CVE-2013-0648)
CPAI-2013-1323 CVE-2013-1592
 		SAP NetWeaver Message Server Memory Corruption (CVE-2013-1592)
CPAI-2013-1316 CVE-2013-0418
 		Oracle Outside In CorelDRAW File Parser Heap Buffer Overflow (CVE-2013-0418)
CPAI-2012-1282   Novell NetIQ Privileged User Manager modifyAccounts Policy Bypass
CPAI-2013-1308 CVE-2012-0006
 		Microsoft DNS Server Denial of Service - Specific (MS12-017; CVE-2012-0006)
CPAI-2012-380 CVE-2012-1723
 		Oracle Java Runtime Bytecode Verifier Cache Code Execution (CVE-2012-1723)
CPAI-2013-998   Non Compliant Scada Modbus Write Multiple Regs Response
CPAI-2013-997   Non Compliant Scada Modbus Write Multiple Coils Response
CPAI-2013-996   Non Compliant Scada Modbus Write Multiple Regs Query
CPAI-2013-995   Non Compliant Scada Modbus Write Multiple Coils Query
CPAI-2013-994   Non Compliant Scada Modbus Write Coils And Rst Comm
CPAI-2013-992   Scada Modbus Write Request To PLC
CPAI-2013-991   Scada Modbus Slave Device Busy Exception Code Delay
CPAI-2013-990   Scada Modbus Report Slave ID

Archives

Product Updates

Security Gateway 

VSX 

IPS-1 

Microsoft Security

Microsoft Security Bulletins 2012 in Check Point Advisories

Microsoft Security Bulletin MS12-002

  1. CPAI-2012-016
    Microsoft Windows Object Packager Insecure Executable Launching (MS12-002; CVE-2012-0009)

Microsoft Security Bulletin MS12-004

  1. CPAI-2012-014
    Microsoft Windows Media Player MIDI Code Execution (MS12-004; CVE-2012-0003)
  2. CPAI-2012-019
    Microsoft Windows DirectShow Filters Remote Code Execution (MS12-004; CVE-2012-0004)

Microsoft Security Bulletin MS12-005

  1. CPAI-2012-018
    Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013)
  2. CPAI-2013-1338
    Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013) - High Confidence

Microsoft Security Bulletin MS12-006

  1. CPAI-2012-020
    Preemptive Protection against SSL and TLS Protocols Information Disclosure (MS12-006; CVE-2011-3389)

Microsoft Security Bulletin MS12-007

  1. CPAI-2012-017
    Microsoft AntiXSS Library Bypass Information Disclosure (MS12-007; CVE-2012-0007)

Microsoft Security Bulletin MS12-008

  1. CPAI-2012-013
    Microsoft Windows Win32k.sys Malformed IFrame Memory Corruption (MS12-008; CVE-2011-5046)

Microsoft Security Bulletin MS12-010

  1. CPAI-2012-050
    Internet Explorer Null Byte Information Disclosure (MS12-010; CVE-2012-0012)
  2. CPAI-2012-053
    Internet Explorer HtmlLayout Remote Code Execution (MS12-010; CVE-2012-0011)
  3. CPAI-2012-054
    Internet Explorer VML Remote Code Execution (MS12-010; CVE-2012-0155)
  4. CPAI-2012-237
    Microsoft Internet Explorer Copy And Paste Information Disclosure (MS12-010; CVE-2012-0010)

Microsoft Security Bulletin MS12-011

  1. CPAI-2012-047
    Microsoft SharePoint inplview.aspx Cross-Site Scripting (MS12-011; CVE-2012-0017)
  2. CPAI-2012-048
    Microsoft SharePoint themeweb.aspx Cross-Site Scripting (MS12-011; CVE-2012-0144)
  3. CPAI-2012-049
    Microsoft SharePoint wizardlist.aspx Cross-Site Scripting (MS12-011; CVE-2012-0145)

Microsoft Security Bulletin MS12-012

  1. CPAI-2012-051
    Microsoft Color Control Panel Insecure Library Loading (MS12-012; CVE-2010-5082)

Microsoft Security Bulletin MS12-013

  1. CPAI-2012-060
    Microsoft Windows msvcrt.dll Media File Code Execution (MS12-013; CVE-2012-0150)

Microsoft Security Bulletin MS12-014

  1. CPAI-2012-061
    Microsoft Windows Indeo Codec Insecure Library Loading (MS12-014; CVE-2010-3138)

Microsoft Security Bulletin MS12-015

  1. CPAI-2012-052
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0020)
  2. CPAI-2012-055
    Microsoft Visio Viewer VSD File Format Memory Corruption (MS12-015; CVE-2012-0019)
  3. CPAI-2012-057
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0136)
  4. CPAI-2012-058
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0137)
  5. CPAI-2012-059
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0138)

Microsoft Security Bulletin MS12-016

  1. CPAI-2013-1295
    Adobe Flash Player malformed SWF file information disclosure (APSB13-05; CVE-2013-0637)
  2. CPAI-2012-056
    Microsoft.NET and Silevrlight Unmanaged Objects Code Execution (MS12-016; CVE-2012-0014)

Microsoft Security Bulletin MS12-017

  1. CPAI-2012-087
    Microsoft DNS Server Denial of Service (MS12-017; CVE-2012-0006)
  2. CPAI-2013-1308
    Microsoft DNS Server Denial of Service - Specific (MS12-017; CVE-2012-0006)

Microsoft Security Bulletin MS12-020

  1. CPAI-2012-084
    Microsoft Windows Remote Desktop Protocol Code Execution (MS12-020; CVE-2012-0002)
  2. CPAI-2012-099
    Preemptive Protection against Microsoft Terminal Server Denial of Service (MS12-020; CVE-2012-0152)

Microsoft Security Bulletin MS12-021

  1. CPAI-2012-085
    Microsoft Visual Studio Add-In Insecure Library Loading (MS12-021; CVE-2012-0008)
  2. CPAI-2013-1332
    Internet Explorer CElement Use After Free Code Execution (MS13-021; CVE-2013-0091)

Microsoft Security Bulletin MS12-022

  1. CPAI-2012-086
    Microsoft Expression Design Insecure Library Loading (MS12-022; CVE-2012-0016)

Microsoft Security Bulletin MS12-023

  1. CPAI-2012-124
    Internet Explorer OnReadyStateChange Remote Code Execution (MS12-023; CVE-2012-0170)
  2. CPAI-2012-125
    Internet Explorer SelectAll Remote Code Execution (MS12-023; CVE-2012-0171)
  3. CPAI-2012-127
    Internet Explorer VML Style Remote Code Execution (MS12-023; CVE-2012-0172)

Microsoft Security Bulletin MS12-024

  1. CPAI-2012-123
    Microsoft Windows Signature Validation Remote Code Execution (MS12-024; CVE-2012-0151)

Microsoft Security Bulletin MS12-025

  1. CPAI-2012-304
    Microsoft .NET Framework Parameter Validation Code Execution (MS12-025; CVE-2012-0163)

Microsoft Security Bulletin MS12-027

  1. CPAI-2012-129
    Microsoft MSCOMCTL.OCX ActiveX Control Remote Code Execution (MS12-027; CVE-2012-0158)
  2. CPAI-2012-130
    MSCOMCTL.OCX Killbit: 9181DC5F-E07D-418A-ACA6-8EEA1ECB8E9E (MS12-027; CVE-2012-0158)
  3. CPAI-2012-131
    MSCOMCTL.OCX Killbit: C74190B6-8589-11d1-B16A-00C0F0283628 (MS12-027; CVE-2012-0158)
  4. CPAI-2012-132
    MSCOMCTL.OCX Killbit: 996BF5E0-8044-4650-ADEB-0B013914E99C (MS12-027; CVE-2012-0158)
  5. CPAI-2012-133
    MSCOMCTL.OCX Killbit: bdd1f04b-858b-11d1-b16a-00c0f0283628 (MS12-027; CVE-2012-0158)

Microsoft Security Bulletin MS12-028

  1. CPAI-2012-128
    Microsoft Office WPS Converter Heap Overflow (MS12-028; CVE-2012-0177)

Microsoft Security Bulletin MS12-029

  1. CPAI-2012-189
    Microsoft Office RTF Mismatch Memory Corruption (MS12-029; CVE-2012-0183)

Microsoft Security Bulletin MS12-030

  1. CPAI-2012-178
    Microsoft Excel MergeCells Record Heap Overflow (MS12-030; CVE-2012-0185)
  2. CPAI-2012-179
    Microsoft Excel File Format OBJECTLINK Record Memory Corruption (MS12-030; CVE-2012-0142)
  3. CPAI-2012-194
    Microsoft Excel File Format Code Execution (MS12-030; CVE-2012-0141)
  4. CPAI-2012-195
    Microsoft Excel Record Structure Memory Corruption (MS12-030; CVE-2012-0143)
  5. CPAI-2012-197
    Microsoft Excel SXLI Record Memory Corruption (MS12-030; CVE-2012-0184)
  6. CPAI-2012-215
    Microsoft Excel SERIES Record Parsing Code Execution (MS12-030; CVE-2012-1847)

Microsoft Security Bulletin MS12-031

  1. CPAI-2012-261
    Microsoft Visio Viewer VSD File Attributes Validation Error (MS12-031; CVE-2012-0018)

Microsoft Security Bulletin MS12-034

  1. CPAI-2012-180
    Microsoft Windows GDI+ Record Type Code Execution (MS12-034; CVE-2012-0165)
  2. CPAI-2012-190
    Microsoft Windows GDI+ EMF Heap Overflow (MS12-034; CVE-2012-0167)
  3. CPAI-2012-198
    Microsoft Windows Malformed TrueType Font Remote Code Execution (MS12-034; CVE-2012-0159)
  4. CPAI-2012-199
    Microsoft Silverlight Double-Free Remote Code Execution (MS12-034; CVE-2012-0176)
  5. CPAI-2012-200
    Microsoft .NET Framework XBAP Buffer Allocation Code Execution (MS12-034; CVE-2012-0162)

Microsoft Security Bulletin MS12-035

  1. CPAI-2012-241
    Microsoft .NET Framework Serialization Code Execution (MS12-035; CVE-2012-0161)
  2. CPAI-2012-242
    Microsoft .NET Framework Serialization Data Validation Error (MS12-035; CVE-2012-0160)

Microsoft Security Bulletin MS12-037

  1. CPAI-2012-248
    Internet Explorer Same ID Property Remote Code Execution (MS12-037; CVE-2012-1875)
  2. CPAI-2012-249
    Internet Explorer Process Memory Information Disclosure (MS12-037; CVE-2012-1873)
  3. CPAI-2012-251
    Internet Explorer Col Element Remote Code Execution (MS12-037; CVE-2012-1876)
  4. CPAI-2012-252
    Internet Explorer OnRowsInserted Event Remote Code Execution (MS12-037; CVE-2012-1881)
  5. CPAI-2012-253
    Internet Explorer insertRow Remote Code Execution (MS12-037; CVE-2012-1880)
  6. CPAI-2012-256
    Internet Explorer Title Element Change Remote Code Execution (MS12-037; CVE-2012-1877)
  7. CPAI-2012-257
    Internet Explorer OnBeforeDeactivate Event Remote Code Execution (MS12-037; CVE-2012-1878)
  8. CPAI-2012-258
    Internet Explorer insertAdjacentText Remote Code Execution (MS12-037; CVE-2012-1879)
  9. CPAI-2012-262
    Internet Explorer Center Element Remote Code Execution (MS12-037; CVE-2012-1523)
  10. CPAI-2012-264
    Internet Explorer Developer Toolbar Remote Code Execution (MS12-037; CVE-2012-1874)

Microsoft Security Bulletin MS12-038

  1. CPAI-2012-259
    Microsoft .NET Framework Function Pointer Remote Code Execution (MS12-038; CVE-2012-1855)

Microsoft Security Bulletin MS12-039

  1. CPAI-2012-254
    Microsoft Lync Insecure Library Loading Code Execution (MS12-039; CVE-2012-1849)
  2. CPAI-2012-255
    Internet Explorer HTML Sanitization Information Disclosure (MS12-039; CVE-2012-1858)

Microsoft Security Bulletin MS12-040

  1. CPAI-2012-260
    Microsoft Dynamic AX Enterprise Portal Cross-site Scripting (MS12-040; CVE-2012-1857)

Microsoft Security Bulletin MS12-043

  1. CPAI-2012-308
    Preemptive Protection against Microsoft XML Uninitialized Memory Corruption (MS12-043; CVE-2012-1889)

Microsoft Security Bulletin MS12-044

  1. CPAI-2012-301
    Internet Explorer Cached Object Remote Code Execution (MS12-044; CVE-2012-1522)
  2. CPAI-2012-305
    Internet Explorer Attribute Remove Remote Code Execution (MS12-044; CVE-2012-1524)

Microsoft Security Bulletin MS12-045

  1. CPAI-2012-303
    Microsoft Data Access Components ADO Cachesize Heap Overflow (MS12-045; CVE-2012-1891)

Microsoft Security Bulletin MS12-046

  1. CPAI-2012-263
    Microsoft Visual Basic for Applications Insecure Library Loading (MS12-046; CVE-2012-1854)

Microsoft Security Bulletin MS12-048

  1. CPAI-2012-307
    Microsoft Windows File and Directory Name Command Injection (MS12-048; CVE-2012-0175)

Microsoft Security Bulletin MS12-050

  1. CPAI-2012-302
    Microsoft SharePoint Reflected List Parameter XSS (MS12-050; CVE-2012-1863)
  2. CPAI-2012-306
    Microsoft SharePoint XSS scriptresx.ashx Elevation of Privilege (MS12-050; CVE-2012-1859)
  3. CPAI-2012-309
    Preemptive Protection against Microsoft SharePoint HTML Sanitization Cross-site Scripting (MS12-050; CVE-2012-1858)
  4. CPAI-2012-310
    Microsoft SharePoint Script in Username Cross-site Scripting (MS12-050; CVE-2012-1861)

Microsoft Security Bulletin MS12-052

  1. CPAI-2012-340
    Internet Explorer Layout Memory Corruption (MS12-052; CVE-2012-1526)
  2. CPAI-2012-342
    Internet Explorer NULL Object Access Remote Code Execution (MS12-052; CVE-2012-2521)
  3. CPAI-2012-343
    Internet Explorer Virtual Function Table Corruption Remote Code Execution (MS12-052; CVE-2012-2522)

Microsoft Security Bulletin MS12-053

  1. CPAI-2012-350
    Microsoft Remote Desktop Protocol Freed Memory Access (MS12-053; CVE-2012-2526)

Microsoft Security Bulletin MS12-054

  1. CPAI-2012-339
    Microsoft Remote Administration Protocol Denial of Service (MS12-054; CVE-2012-1850)
  2. CPAI-2012-349
    Microsoft Windows Print Spooler Format String Code Execution (MS12-054; CVE-2012-1851)
  3. CPAI-2012-351
    Microsoft Remote Administration Protocol Heap and Stack Overflow (MS12-054; CVE-2012-1852, CVE-2012-1853)

Microsoft Security Bulletin MS12-056

  1. CPAI-2012-341
    Internet Explorer JavaScript Integer Overflow Remote Code Execution (MS12-056; CVE-2012-2523)

Microsoft Security Bulletin MS12-057

  1. CPAI-2012-397
    Preemptive protection against Microsoft CGM File Format Memory Corruption (MS12-057; CVE-2012-2524)

Microsoft Security Bulletin MS12-059

  1. CPAI-2012-348
    Microsoft Visio DXF File Parsing Code Execution (MS12-059; CVE-2012-1888)

Microsoft Security Bulletin MS12-060

  1. CPAI-2012-347
    Microsoft Windows Common Controls Remote Code Execution (MS12-060; CVE-2012-1856)

Microsoft Security Bulletin MS12-061

  1. CPAI-2012-409
    Microsoft Visual Studio Team Foundation Server XSS (MS12-061; CVE-2012-1892)

Microsoft Security Bulletin MS12-062

  1. CPAI-2012-405
    Microsoft SCCM Reflected Cross-site Scripting (MS12-062; CVE-2012-2536)

Microsoft Security Bulletin MS12-063

  1. CPAI-2012-604
    Internet Explorer OnMove Use After Free Remote Code Execution (MS12-063; CVE-2012-1529)
  2. CPAI-2012-605
    Internet Explorer Event Listener Remote Code Execution (MS12-063; CVE-2012-2546)
  3. CPAI-2012-606
    Internet Explorer Layout Use After Free Remote Code Execution (MS12-063; CVE-2012-2548)
  4. CPAI-2012-607
    Internet Explorer cloneNode Use After Free Remote Code Execution (MS12-063; CVE-2012-2557)

Microsoft Security Bulletin MS12-064

  1. CPAI-2012-611
    Microsoft Word PAPX Section Corruption Remote Code Execution (MS12-064; CVE-2012-0182)
  2. CPAI-2012-629
    Microsoft Office RTF File listid Use-After-Free Code Execution (MS12-064; CVE-2012-2528)

Microsoft Security Bulletin MS12-065

  1. CPAI-2012-630
    Microsoft Works RTF Heap Remote Code Execution (MS12-065; CVE-2012-2550)

Microsoft Security Bulletin MS12-069

  1. CPAI-2012-642
    Microsoft Kerberos NULL Dereference Denial of Service (MS12-069; CVE-2012-2551)

Microsoft Security Bulletin MS12-070

  1. CPAI-2012-631
    Microsoft SQL Server Report Manager Elevation of Privilege (MS12-070; CVE-2012-2552)

Microsoft Security Bulletin MS12-071

  1. CPAI-2012-803
    Microsoft Internet Explorer CTreePos Use After Free (MS12-071; CVE-2012-1539)
  2. CPAI-2012-805
    Microsoft Internet Explorer CFormElement Use After Free (MS12-071; CVE-2012-1538)
  3. CPAI-2012-807
    Microsoft Internet Explorer CTreeNode Use After Free (MS12-071; CVE-2012-4775)

Microsoft Security Bulletin MS12-072

  1. CPAI-2012-808
    Microsoft Windows Briefcase Integer Underflow (MS12-072; CVE-2012-1527; CVE-2012-1528)

Microsoft Security Bulletin MS12-074

  1. CPAI-2012-793
    Microsoft .NET Framework Insecure Library Loading Code Execution (MS12-074; CVE-2012-2519)
  2. CPAI-2012-804
    Microsoft .Net Framework Web Proxy Auto-Discovery Code Execution (MS12-074; CVE-2012-4776)

Microsoft Security Bulletin MS12-075

  1. CPAI-2012-806
    Microsoft Windows Font Parsing Remote Code Execution (MS12-075; CVE-2012-2897)

Microsoft Security Bulletin MS12-076

  1. CPAI-2012-790
    Microsoft Excel Malformed File Memory Corruption (MS12-076; CVE-2012-1886)
  2. CPAI-2012-795
    Microsoft Excel Modified Data Structure Stack Overflow (MS12-076; CVE-2012-2543)
  3. CPAI-2012-802
    Microsoft Excel SST Invalid Length Use After Free (MS12-076; CVE-2012-1887)
  4. CPAI-2012-402
    Microsoft Excel SerAuxErrBar Heap Overflow (MS12-076; CVE-2012-1885)

Microsoft Security Bulletin MS12-077

  1. CPAI-2012-1252
    Internet Explorer Improper Ref Counting Use After Free (MS12-077; CVE-2012-4787)

Microsoft Security Bulletin MS12-078

  1. CPAI-2012-1279
    Microsoft Windows OpenType Font Parsing Remote Code Execution (MS12-078; CVE-2012-2556)
  2. CPAI-2012-1291
    Microsoft Windows TrueType Font Parsing Remote Code Execution (MS12-078; CVE-2012-4786)

Microsoft Security Bulletin MS12-079

  1. CPAI-2012-1139
    Microsoft Word RTF listoverridecount Remote Code Execution (MS12-079; CVE-2012-2539)

Microsoft Security Bulletin MS12-081

  1. CPAI-2012-788
    Microsoft Windows Filename Parsing Remote Code Execution (MS12-081; CVE-2012-4774)

Microsoft Security Bulletin MS12-082

  1. CPAI-2012-1254
    Microsoft DirectPlay CLSID_DP8SP_MODEM (MS12-082; CVE-2012-1537)
  2. CPAI-2012-1256
    Microsoft DirectPlay CLSID_DP8SP_SERIAL (MS12-082; CVE-2012-1537)
  3. CPAI-2012-1257
    Microsoft DirectPlay CLSID_DirectPlay8Peer (MS12-082; CVE-2012-1537)
  4. CPAI-2012-1258
    Microsoft DirectPlay CLSID_DirectPlay8Client (MS12-082; CVE-2012-1537)
  5. CPAI-2012-1259
    Microsoft DirectPlay CLSID_DirectPlay8LobbyClient (MS12-082; CVE-2012-1537)
  6. CPAI-2012-1260
    Microsoft DirectPlay CLSID_DirectPlay8LobbiedApplication (MS12-082; CVE-2012-1537)
  7. CPAI-2012-1261
    Microsoft DirectPlay CLSID_DirectPlay8Address (MS12-082; CVE-2012-1537)
  8. CPAI-2013-016
    Microsoft DirectPlay Office File Handling Invalid Memory Free (MS12-082; CVE-2012-1537)