Lucene search

MICROSOFTSECURITYVULNS:VULN:12137

HistoryJan 21, 2012 - 12:00 a.m.

Microsoft Windows multiple security vulnerabilities

2012-01-2100:00:00

MICROSOFT

vulners.com

JSON

SafeSEH protection bypass, Windows Object Packager code execution, CSRSS privilege escalation, DirectShow / Windows Media memory corruption, Windows Packager code execution, SSL/TLS information leakage.

CPENameOperatorVersion
windowseq7

CPE	Name	Operator	Version
	windows	eq	7

References

vulners.com/securityvulns/securityvulns:doc:27567

openvas

Microsoft Windows Media Could Allow Remote Code Execution Vulnerabilities (2636391)

2012-01-11 00:00:00

Microsoft Windows Media Could Allow Remote Code Execution Vulnerabilities (2636391)

2012-01-11 00:00:00

Windows ClickOnce Application Installer Remote Code Execution Vulnerability (2584146)

2012-01-11 00:00:00

nessus

MS12-004: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2636391)

2012-01-10 00:00:00

MS12-005: Vulnerability in Microsoft Windows Could Allow Remote Code Execution (2584146)

2012-01-10 00:00:00

MS12-003: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2646524)

2012-01-10 00:00:00

mskb

MS12-004: Vulnerabilities in Windows Media could allow remote code execution: January 10, 2012

2012-01-10 00:00:00

MS12-006: Vulnerability in SSL/TLS could allow information disclosure: January 10, 2012

2012-01-10 00:00:00

checkpoint_advisories

Microsoft Windows DirectShow Filters Remote Code Execution (MS12-004; CVE-2012-0004)

2012-01-10 00:00:00

Microsoft Windows Assembly Execution (MS12-005) - High Confidence (CVE-2012-0013)

2013-03-12 00:00:00

Microsoft Windows Assembly Execution File Inclusion - Ver2 (CVE-2012-0013)

2014-04-16 00:00:00

cvelist

CVE-2012-0004

2012-01-10 21:00:00

CVE-2012-0013

2012-01-10 21:00:00

CVE-2012-0009

2012-01-10 21:00:00

cve

CVE-2012-0004

2012-01-10 21:55:00

CVE-2012-0013

2012-01-10 21:55:00

CVE-2012-0005

2012-01-10 21:55:00

prion

Remote code execution

2012-01-10 21:55:00

Design/Logic Flaw

2012-01-10 21:55:00

Remote code execution

2012-01-10 21:55:00

exploitpack

Microsoft Windows - Assembly Execution (MS12-005)

2012-01-14 00:00:00

seebug

Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability(MS12-005)

2012-06-11 00:00:00

Microsoft Windows Media Player ‘winmm.dll’ MIDI文件解析远程代码执行漏洞(CVE-2012-0003)

2012-01-30 00:00:00

MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability

2014-07-01 00:00:00

saint

Microsoft Office ClickOnce Unsafe Execution

2012-01-16 00:00:00

Windows Media MIDI Invalid Channel

2012-02-06 00:00:00

Windows Media MIDI Invalid Channel

2012-02-06 00:00:00

packetstorm

MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability

2012-06-11 00:00:00

MS12-004 midiOutPlayNextPolyEvent Heap Overflow

2012-01-28 00:00:00

canvas

Immunity Canvas: MS12_005

2012-01-10 21:55:00

Immunity Canvas: MS12_004

2012-01-10 21:55:00

metasploit

MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability

2012-06-10 06:08:28

securityvulns

Office arbitrary ClickOnce application execution vulnerability

2012-01-21 00:00:00

ESA-2012-032: RSA BSAFE® Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks

2014-05-05 00:00:00

ESA-2012-032: RSA BSAFE(r) Micro Edition Suite Security Update for BEAST (Browser Exploit Against SSL/TLS) attacks

2012-10-29 00:00:00

symantec

Microsoft Windows Media Player 'winmm.dll' MIDI File Parsing Remote Buffer Overflow Vulnerability

2012-01-10 00:00:00

Microsoft Windows CSRSS CVE-2012-0005 Local Privilege Escalation Vulnerability

2012-01-10 00:00:00

Microsoft Windows Kernel CVE-2012-0001 SafeSEH Security Bypass Vulnerability

2012-01-10 00:00:00

threatpost

Attackers Targeting Windows Media Bug With Malware

2012-01-27 13:03:33

checkpoint_security

Check Point response to CVE-2011-3389 aka BEAST attack

2012-10-15 22:00:00

ibm

Security Bulletin: Vulnerabilities in SSL and TLS protocols affect the IBM FlashSystem V840 (CVE-2011-3389)

2018-06-18 00:09:28

Security Bulletin: IBM System x and Flex Systems Browser Exploit Against SSL/TLS (BEAST) Mitigations (CVE-2011-3389)

2022-05-16 16:03:13

Security Bulletin: BEAST security vulnerability in IBM Tivoli Netcool Performance Manager for Wireline( CVE-2011-3389)

2020-08-25 12:33:00

fedora

[SECURITY] Fedora 15 Update: xulrunner-9.0.1-1.fc15

2012-01-22 05:26:29

[SECURITY] Fedora 15 Update: thunderbird-9.0-4.fc15

2012-01-22 05:26:29

[SECURITY] Fedora 15 Update: nspr-4.8.9-2.fc15

2012-01-22 05:26:29

cert

SSL 3.0 and TLS 1.0 allow chosen plaintext attack in CBC modes

2011-09-27 00:00:00

veracode

Man-in-the-Middle (MitM)

2019-05-02 04:55:58

Blockwise Chosen-boundary Attacks

2017-04-27 06:38:37

debiancve

CVE-2011-3389

2011-09-06 19:55:00

ics

Siemens Ruggedcom WIN Products BEAST Attack Vulnerability

2018-09-06 12:00:00

ubuntucve

CVE-2011-3389

2011-11-16 00:00:00

debian

[SECURITY] [DSA 2398-2] curl regression

2012-03-31 19:39:58

[SECURITY] [DSA 2368-1] lighttpd security update

2011-12-21 00:42:08

[SECURITY] [DSA 2381-] lighttpd security update

2011-12-21 00:21:08

freebsd

fetchmail -- chosen plaintext attack against SSL CBC initialization vectors

2012-01-19 00:00:00

exploitdb

Microsoft Windows - Assembly Execution (MS12-005)

2012-01-14 00:00:00

Microsoft Office - ClickOnce Unsafe Object Package Handling (MS12-005) (Metasploit)

2012-06-11 00:00:00

Microsoft Windows - midiOutPlayNextPolyEvent Heap Overflow (MS12-004) (Metasploit)

2012-01-28 00:00:00

attackerkb

Microsoft Internet Explorer Use-After-Free Vulnerability

2014-02-14 00:00:00

rubygems

CVE-2011-3389 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

2011-08-31 00:00:00

osv

curl - several

2012-03-31 00:00:00

nss - security update

2015-02-16 00:00:00

SOL13400 - SSL 3.0/TLS 1.0 BEAST vulnerability CVE-2011-3389 and TLS protocol vulnerability CVE-2012-1870

2012-03-06 00:00:00

Microsoft Windows multiple security vulnerabilities

References

Related