Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Microsoft Security

Microsoft Security Bulletins 2012 in Check Point Advisories

Microsoft Security Bulletin MS12-002

  1. CPAI-2012-016
    Microsoft Windows Object Packager Insecure Executable Launching (MS12-002; CVE-2012-0009)

Microsoft Security Bulletin MS12-004

  1. CPAI-2012-014
    Microsoft Windows Media Player MIDI Code Execution (MS12-004; CVE-2012-0003)
  2. CPAI-2012-019
    Microsoft Windows DirectShow Filters Remote Code Execution (MS12-004; CVE-2012-0004)

Microsoft Security Bulletin MS12-005

  1. CPAI-2012-018
    Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013)
  2. CPAI-2013-1338
    Microsoft Windows Assembly Execution Vulnerability (MS12-005; CVE-2012-0013) - High Confidence

Microsoft Security Bulletin MS12-006

  1. CPAI-2012-020
    Preemptive Protection against SSL and TLS Protocols Information Disclosure (MS12-006; CVE-2011-3389)

Microsoft Security Bulletin MS12-007

  1. CPAI-2012-017
    Microsoft AntiXSS Library Bypass Information Disclosure (MS12-007; CVE-2012-0007)

Microsoft Security Bulletin MS12-008

  1. CPAI-2012-013
    Microsoft Windows Win32k.sys Malformed IFrame Memory Corruption (MS12-008; CVE-2011-5046)

Microsoft Security Bulletin MS12-010

  1. CPAI-2012-050
    Internet Explorer Null Byte Information Disclosure (MS12-010; CVE-2012-0012)
  2. CPAI-2012-053
    Internet Explorer HtmlLayout Remote Code Execution (MS12-010; CVE-2012-0011)
  3. CPAI-2012-054
    Internet Explorer VML Remote Code Execution (MS12-010; CVE-2012-0155)
  4. CPAI-2012-237
    Microsoft Internet Explorer Copy And Paste Information Disclosure (MS12-010; CVE-2012-0010)

Microsoft Security Bulletin MS12-011

  1. CPAI-2012-047
    Microsoft SharePoint inplview.aspx Cross-Site Scripting (MS12-011; CVE-2012-0017)
  2. CPAI-2012-048
    Microsoft SharePoint themeweb.aspx Cross-Site Scripting (MS12-011; CVE-2012-0144)
  3. CPAI-2012-049
    Microsoft SharePoint wizardlist.aspx Cross-Site Scripting (MS12-011; CVE-2012-0145)

Microsoft Security Bulletin MS12-012

  1. CPAI-2012-051
    Microsoft Color Control Panel Insecure Library Loading (MS12-012; CVE-2010-5082)

Microsoft Security Bulletin MS12-013

  1. CPAI-2012-060
    Microsoft Windows msvcrt.dll Media File Code Execution (MS12-013; CVE-2012-0150)

Microsoft Security Bulletin MS12-014

  1. CPAI-2012-061
    Microsoft Windows Indeo Codec Insecure Library Loading (MS12-014; CVE-2010-3138)

Microsoft Security Bulletin MS12-015

  1. CPAI-2012-052
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0020)
  2. CPAI-2012-055
    Microsoft Visio Viewer VSD File Format Memory Corruption (MS12-015; CVE-2012-0019)
  3. CPAI-2012-057
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0136)
  4. CPAI-2012-058
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0137)
  5. CPAI-2012-059
    Microsoft Visio Viewer File Format Code Execution (MS12-015; CVE-2012-0138)

Microsoft Security Bulletin MS12-016

  1. CPAI-2013-1295
    Adobe Flash Player malformed SWF file information disclosure (APSB13-05; CVE-2013-0637)
  2. CPAI-2012-056
    Microsoft.NET and Silevrlight Unmanaged Objects Code Execution (MS12-016; CVE-2012-0014)

Microsoft Security Bulletin MS12-017

  1. CPAI-2012-087
    Microsoft DNS Server Denial of Service (MS12-017; CVE-2012-0006)
  2. CPAI-2013-1308
    Microsoft DNS Server Denial of Service - Specific (MS12-017; CVE-2012-0006)

Microsoft Security Bulletin MS12-020

  1. CPAI-2012-084
    Microsoft Windows Remote Desktop Protocol Code Execution (MS12-020; CVE-2012-0002)
  2. CPAI-2012-099
    Preemptive Protection against Microsoft Terminal Server Denial of Service (MS12-020; CVE-2012-0152)

Microsoft Security Bulletin MS12-021

  1. CPAI-2012-085
    Microsoft Visual Studio Add-In Insecure Library Loading (MS12-021; CVE-2012-0008)
  2. CPAI-2013-1332
    Internet Explorer CElement Use After Free Code Execution (MS13-021; CVE-2013-0091)

Microsoft Security Bulletin MS12-022

  1. CPAI-2012-086
    Microsoft Expression Design Insecure Library Loading (MS12-022; CVE-2012-0016)

Microsoft Security Bulletin MS12-023

  1. CPAI-2012-124
    Internet Explorer OnReadyStateChange Remote Code Execution (MS12-023; CVE-2012-0170)
  2. CPAI-2012-125
    Internet Explorer SelectAll Remote Code Execution (MS12-023; CVE-2012-0171)
  3. CPAI-2012-127
    Internet Explorer VML Style Remote Code Execution (MS12-023; CVE-2012-0172)

Microsoft Security Bulletin MS12-024

  1. CPAI-2012-123
    Microsoft Windows Signature Validation Remote Code Execution (MS12-024; CVE-2012-0151)

Microsoft Security Bulletin MS12-025

  1. CPAI-2012-304
    Microsoft .NET Framework Parameter Validation Code Execution (MS12-025; CVE-2012-0163)

Microsoft Security Bulletin MS12-027

  1. CPAI-2012-129
    Microsoft MSCOMCTL.OCX ActiveX Control Remote Code Execution (MS12-027; CVE-2012-0158)
  2. CPAI-2012-130
    MSCOMCTL.OCX Killbit: 9181DC5F-E07D-418A-ACA6-8EEA1ECB8E9E (MS12-027; CVE-2012-0158)
  3. CPAI-2012-131
    MSCOMCTL.OCX Killbit: C74190B6-8589-11d1-B16A-00C0F0283628 (MS12-027; CVE-2012-0158)
  4. CPAI-2012-132
    MSCOMCTL.OCX Killbit: 996BF5E0-8044-4650-ADEB-0B013914E99C (MS12-027; CVE-2012-0158)
  5. CPAI-2012-133
    MSCOMCTL.OCX Killbit: bdd1f04b-858b-11d1-b16a-00c0f0283628 (MS12-027; CVE-2012-0158)

Microsoft Security Bulletin MS12-028

  1. CPAI-2012-128
    Microsoft Office WPS Converter Heap Overflow (MS12-028; CVE-2012-0177)

Microsoft Security Bulletin MS12-029

  1. CPAI-2012-189
    Microsoft Office RTF Mismatch Memory Corruption (MS12-029; CVE-2012-0183)

Microsoft Security Bulletin MS12-030

  1. CPAI-2012-178
    Microsoft Excel MergeCells Record Heap Overflow (MS12-030; CVE-2012-0185)
  2. CPAI-2012-179
    Microsoft Excel File Format OBJECTLINK Record Memory Corruption (MS12-030; CVE-2012-0142)
  3. CPAI-2012-194
    Microsoft Excel File Format Code Execution (MS12-030; CVE-2012-0141)
  4. CPAI-2012-195
    Microsoft Excel Record Structure Memory Corruption (MS12-030; CVE-2012-0143)
  5. CPAI-2012-197
    Microsoft Excel SXLI Record Memory Corruption (MS12-030; CVE-2012-0184)
  6. CPAI-2012-215
    Microsoft Excel SERIES Record Parsing Code Execution (MS12-030; CVE-2012-1847)

Microsoft Security Bulletin MS12-031

  1. CPAI-2012-261
    Microsoft Visio Viewer VSD File Attributes Validation Error (MS12-031; CVE-2012-0018)

Microsoft Security Bulletin MS12-034

  1. CPAI-2012-180
    Microsoft Windows GDI+ Record Type Code Execution (MS12-034; CVE-2012-0165)
  2. CPAI-2012-190
    Microsoft Windows GDI+ EMF Heap Overflow (MS12-034; CVE-2012-0167)
  3. CPAI-2012-198
    Microsoft Windows Malformed TrueType Font Remote Code Execution (MS12-034; CVE-2012-0159)
  4. CPAI-2012-199
    Microsoft Silverlight Double-Free Remote Code Execution (MS12-034; CVE-2012-0176)
  5. CPAI-2012-200
    Microsoft .NET Framework XBAP Buffer Allocation Code Execution (MS12-034; CVE-2012-0162)

Microsoft Security Bulletin MS12-035

  1. CPAI-2012-241
    Microsoft .NET Framework Serialization Code Execution (MS12-035; CVE-2012-0161)
  2. CPAI-2012-242
    Microsoft .NET Framework Serialization Data Validation Error (MS12-035; CVE-2012-0160)

Microsoft Security Bulletin MS12-037

  1. CPAI-2012-248
    Internet Explorer Same ID Property Remote Code Execution (MS12-037; CVE-2012-1875)
  2. CPAI-2012-249
    Internet Explorer Process Memory Information Disclosure (MS12-037; CVE-2012-1873)
  3. CPAI-2012-251
    Internet Explorer Col Element Remote Code Execution (MS12-037; CVE-2012-1876)
  4. CPAI-2012-252
    Internet Explorer OnRowsInserted Event Remote Code Execution (MS12-037; CVE-2012-1881)
  5. CPAI-2012-253
    Internet Explorer insertRow Remote Code Execution (MS12-037; CVE-2012-1880)
  6. CPAI-2012-256
    Internet Explorer Title Element Change Remote Code Execution (MS12-037; CVE-2012-1877)
  7. CPAI-2012-257
    Internet Explorer OnBeforeDeactivate Event Remote Code Execution (MS12-037; CVE-2012-1878)
  8. CPAI-2012-258
    Internet Explorer insertAdjacentText Remote Code Execution (MS12-037; CVE-2012-1879)
  9. CPAI-2012-262
    Internet Explorer Center Element Remote Code Execution (MS12-037; CVE-2012-1523)
  10. CPAI-2012-264
    Internet Explorer Developer Toolbar Remote Code Execution (MS12-037; CVE-2012-1874)

Microsoft Security Bulletin MS12-038

  1. CPAI-2012-259
    Microsoft .NET Framework Function Pointer Remote Code Execution (MS12-038; CVE-2012-1855)

Microsoft Security Bulletin MS12-039

  1. CPAI-2012-254
    Microsoft Lync Insecure Library Loading Code Execution (MS12-039; CVE-2012-1849)
  2. CPAI-2012-255
    Internet Explorer HTML Sanitization Information Disclosure (MS12-039; CVE-2012-1858)

Microsoft Security Bulletin MS12-040

  1. CPAI-2012-260
    Microsoft Dynamic AX Enterprise Portal Cross-site Scripting (MS12-040; CVE-2012-1857)

Microsoft Security Bulletin MS12-043

  1. CPAI-2012-308
    Preemptive Protection against Microsoft XML Uninitialized Memory Corruption (MS12-043; CVE-2012-1889)

Microsoft Security Bulletin MS12-044

  1. CPAI-2012-301
    Internet Explorer Cached Object Remote Code Execution (MS12-044; CVE-2012-1522)
  2. CPAI-2012-305
    Internet Explorer Attribute Remove Remote Code Execution (MS12-044; CVE-2012-1524)

Microsoft Security Bulletin MS12-045

  1. CPAI-2012-303
    Microsoft Data Access Components ADO Cachesize Heap Overflow (MS12-045; CVE-2012-1891)

Microsoft Security Bulletin MS12-046

  1. CPAI-2012-263
    Microsoft Visual Basic for Applications Insecure Library Loading (MS12-046; CVE-2012-1854)

Microsoft Security Bulletin MS12-048

  1. CPAI-2012-307
    Microsoft Windows File and Directory Name Command Injection (MS12-048; CVE-2012-0175)

Microsoft Security Bulletin MS12-050

  1. CPAI-2012-302
    Microsoft SharePoint Reflected List Parameter XSS (MS12-050; CVE-2012-1863)
  2. CPAI-2012-306
    Microsoft SharePoint XSS scriptresx.ashx Elevation of Privilege (MS12-050; CVE-2012-1859)
  3. CPAI-2012-309
    Preemptive Protection against Microsoft SharePoint HTML Sanitization Cross-site Scripting (MS12-050; CVE-2012-1858)
  4. CPAI-2012-310
    Microsoft SharePoint Script in Username Cross-site Scripting (MS12-050; CVE-2012-1861)

Microsoft Security Bulletin MS12-052

  1. CPAI-2012-340
    Internet Explorer Layout Memory Corruption (MS12-052; CVE-2012-1526)
  2. CPAI-2012-342
    Internet Explorer NULL Object Access Remote Code Execution (MS12-052; CVE-2012-2521)
  3. CPAI-2012-343
    Internet Explorer Virtual Function Table Corruption Remote Code Execution (MS12-052; CVE-2012-2522)

Microsoft Security Bulletin MS12-053

  1. CPAI-2012-350
    Microsoft Remote Desktop Protocol Freed Memory Access (MS12-053; CVE-2012-2526)

Microsoft Security Bulletin MS12-054

  1. CPAI-2012-339
    Microsoft Remote Administration Protocol Denial of Service (MS12-054; CVE-2012-1850)
  2. CPAI-2012-349
    Microsoft Windows Print Spooler Format String Code Execution (MS12-054; CVE-2012-1851)
  3. CPAI-2012-351
    Microsoft Remote Administration Protocol Heap and Stack Overflow (MS12-054; CVE-2012-1852, CVE-2012-1853)

Microsoft Security Bulletin MS12-056

  1. CPAI-2012-341
    Internet Explorer JavaScript Integer Overflow Remote Code Execution (MS12-056; CVE-2012-2523)

Microsoft Security Bulletin MS12-057

  1. CPAI-2012-397
    Preemptive protection against Microsoft CGM File Format Memory Corruption (MS12-057; CVE-2012-2524)

Microsoft Security Bulletin MS12-059

  1. CPAI-2012-348
    Microsoft Visio DXF File Parsing Code Execution (MS12-059; CVE-2012-1888)

Microsoft Security Bulletin MS12-060

  1. CPAI-2012-347
    Microsoft Windows Common Controls Remote Code Execution (MS12-060; CVE-2012-1856)

Microsoft Security Bulletin MS12-061

  1. CPAI-2012-409
    Microsoft Visual Studio Team Foundation Server XSS (MS12-061; CVE-2012-1892)

Microsoft Security Bulletin MS12-062

  1. CPAI-2012-405
    Microsoft SCCM Reflected Cross-site Scripting (MS12-062; CVE-2012-2536)

Microsoft Security Bulletin MS12-063

  1. CPAI-2012-604
    Internet Explorer OnMove Use After Free Remote Code Execution (MS12-063; CVE-2012-1529)
  2. CPAI-2012-605
    Internet Explorer Event Listener Remote Code Execution (MS12-063; CVE-2012-2546)
  3. CPAI-2012-606
    Internet Explorer Layout Use After Free Remote Code Execution (MS12-063; CVE-2012-2548)
  4. CPAI-2012-607
    Internet Explorer cloneNode Use After Free Remote Code Execution (MS12-063; CVE-2012-2557)

Microsoft Security Bulletin MS12-064

  1. CPAI-2012-611
    Microsoft Word PAPX Section Corruption Remote Code Execution (MS12-064; CVE-2012-0182)
  2. CPAI-2012-629
    Microsoft Office RTF File listid Use-After-Free Code Execution (MS12-064; CVE-2012-2528)

Microsoft Security Bulletin MS12-065

  1. CPAI-2012-630
    Microsoft Works RTF Heap Remote Code Execution (MS12-065; CVE-2012-2550)

Microsoft Security Bulletin MS12-069

  1. CPAI-2012-642
    Microsoft Kerberos NULL Dereference Denial of Service (MS12-069; CVE-2012-2551)

Microsoft Security Bulletin MS12-070

  1. CPAI-2012-631
    Microsoft SQL Server Report Manager Elevation of Privilege (MS12-070; CVE-2012-2552)

Microsoft Security Bulletin MS12-071

  1. CPAI-2012-803
    Microsoft Internet Explorer CTreePos Use After Free (MS12-071; CVE-2012-1539)
  2. CPAI-2012-805
    Microsoft Internet Explorer CFormElement Use After Free (MS12-071; CVE-2012-1538)
  3. CPAI-2012-807
    Microsoft Internet Explorer CTreeNode Use After Free (MS12-071; CVE-2012-4775)

Microsoft Security Bulletin MS12-072

  1. CPAI-2012-808
    Microsoft Windows Briefcase Integer Underflow (MS12-072; CVE-2012-1527; CVE-2012-1528)

Microsoft Security Bulletin MS12-074

  1. CPAI-2012-793
    Microsoft .NET Framework Insecure Library Loading Code Execution (MS12-074; CVE-2012-2519)
  2. CPAI-2012-804
    Microsoft .Net Framework Web Proxy Auto-Discovery Code Execution (MS12-074; CVE-2012-4776)

Microsoft Security Bulletin MS12-075

  1. CPAI-2012-806
    Microsoft Windows Font Parsing Remote Code Execution (MS12-075; CVE-2012-2897)

Microsoft Security Bulletin MS12-076

  1. CPAI-2012-790
    Microsoft Excel Malformed File Memory Corruption (MS12-076; CVE-2012-1886)
  2. CPAI-2012-795
    Microsoft Excel Modified Data Structure Stack Overflow (MS12-076; CVE-2012-2543)
  3. CPAI-2012-802
    Microsoft Excel SST Invalid Length Use After Free (MS12-076; CVE-2012-1887)
  4. CPAI-2012-402
    Microsoft Excel SerAuxErrBar Heap Overflow (MS12-076; CVE-2012-1885)

Microsoft Security Bulletin MS12-077

  1. CPAI-2012-1252
    Internet Explorer Improper Ref Counting Use After Free (MS12-077; CVE-2012-4787)

Microsoft Security Bulletin MS12-078

  1. CPAI-2012-1279
    Microsoft Windows OpenType Font Parsing Remote Code Execution (MS12-078; CVE-2012-2556)
  2. CPAI-2012-1291
    Microsoft Windows TrueType Font Parsing Remote Code Execution (MS12-078; CVE-2012-4786)

Microsoft Security Bulletin MS12-079

  1. CPAI-2012-1139
    Microsoft Word RTF listoverridecount Remote Code Execution (MS12-079; CVE-2012-2539)

Microsoft Security Bulletin MS12-081

  1. CPAI-2012-788
    Microsoft Windows Filename Parsing Remote Code Execution (MS12-081; CVE-2012-4774)

Microsoft Security Bulletin MS12-082

  1. CPAI-2012-1254
    Microsoft DirectPlay CLSID_DP8SP_MODEM (MS12-082; CVE-2012-1537)
  2. CPAI-2012-1256
    Microsoft DirectPlay CLSID_DP8SP_SERIAL (MS12-082; CVE-2012-1537)
  3. CPAI-2012-1257
    Microsoft DirectPlay CLSID_DirectPlay8Peer (MS12-082; CVE-2012-1537)
  4. CPAI-2012-1258
    Microsoft DirectPlay CLSID_DirectPlay8Client (MS12-082; CVE-2012-1537)
  5. CPAI-2012-1259
    Microsoft DirectPlay CLSID_DirectPlay8LobbyClient (MS12-082; CVE-2012-1537)
  6. CPAI-2012-1260
    Microsoft DirectPlay CLSID_DirectPlay8LobbiedApplication (MS12-082; CVE-2012-1537)
  7. CPAI-2012-1261
    Microsoft DirectPlay CLSID_DirectPlay8Address (MS12-082; CVE-2012-1537)
  8. CPAI-2013-016
    Microsoft DirectPlay Office File Handling Invalid Memory Free (MS12-082; CVE-2012-1537)
MS Securities Archive