Click on the underlined CVE for additional vuln specific info
CVE-2012-5972 CVE-2012-4689 CVE-2013-1109 CVE-2012-6397 CVE-2012-6392 CVE-2012-5444 CVE-2012-5419 CVE-2013-0420 CVE-2013-0418 CVE-2013-0417 CVE-2013-0415 CVE-2013-0414 CVE-2013-0407 CVE-2013-0400 CVE-2013-0399 CVE-2013-0397 CVE-2013-0396 CVE-2013-0395 CVE-2013-0394 CVE-2013-0393
CVE-2013-0392 CVE-2013-0391 CVE-2013-0390 CVE-2013-0389 CVE-2013-0388 CVE-2013-0387 CVE-2013-0386 CVE-2013-0385 CVE-2013-0384 CVE-2013-0383 CVE-2013-0382 CVE-2013-0381 CVE-2013-0380 CVE-2013-0379 CVE-2013-0378 CVE-2013-0377 CVE-2013-0376 CVE-2013-0375 CVE-2013-0374 CVE-2013-0373
Summary: Directory traversal vulnerability in the web server in SpecView 2.5 build 853 and earlier allows remote attackers to read arbitrary files via a ... (dot dot dot) in a URI.
Published: 01/17/2013
Summary: Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request.
Published: 01/17/2013
Summary: Cross-site request forgery (CSRF) vulnerability in testingLibraryAction.do in the Training Center testing library in Cisco WebEx Training Center allows remote attackers to hijack the authentication of arbitrary users for requests that delete tests, aka Bug ID CSCzu81067.
Published: 01/17/2013
Summary: Cross-site scripting (XSS) vulnerability in Cisco WebEx Social (formerly Cisco Quad) allows remote attackers to inject arbitrary web script or HTML via a crafted RSS service link, aka Bug ID CSCub61977.
Published: 01/17/2013
Summary: Cisco Prime LAN Management Solution (LMS) 4.1 through 4.2.2 on Linux does not properly validate authentication and authorization requests in TCP sessions, which allows remote attackers to execute arbitrary commands via a crafted session, aka Bug ID CSCuc79779.
Published: 01/17/2013
Summary: Cisco TelePresence Video Communication Server (VCS) X7.0.3 does not properly process certain search rules, which allows remote attackers to create conferences via an unspecified Conductor request, aka Bug ID CSCub67989.
Published: 01/17/2013
Summary: Cisco Adaptive Security Appliance (ASA) software 8.7.1 and 8.7.1.1 for the Cisco ASA 1000V Cloud Firewall allows remote attackers to cause a denial of service (device reload) via a malformed H.225 H.323 IPv4 packet, aka Bug IDs CSCuc42812 and CSCuc88741.
Published: 01/17/2013
Summary: Unspecified vulnerability in the VirtualBox component in Oracle Virtualization 4.0, 4.1, and 4.2 allows local users to affect integrity and availability via unknown vectors related to Core.
Published: 01/17/2013
CVSS Severity: 2.4 (LOW)
Summary: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393.
Published: 01/17/2013
CVSS Severity: 6.8 (MEDIUM)
Summary: Unspecified vulnerability in the Sun Storage Common Array Manager (CAM) component in Oracle Sun Products Suite 6.9.0 allows remote attackers to affect confidentiality, related to Fault Management System (FMS).
Published: 01/17/2013
CVSS Severity: 5.0 (MEDIUM)
Summary: Unspecified vulnerability Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the Bind/Postinstall script for Bind package.
Published: 01/17/2013
CVSS Severity: 6.0 (MEDIUM)
Summary: Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and availability via unknown vectors related to Utility/ksh93.
Published: 01/17/2013
CVSS Severity: 3.3 (LOW)
Summary: Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Kernel/DTrace Framework.
Published: 01/17/2013
CVSS Severity: 4.6 (MEDIUM)
Summary: Unspecified vulnerability in Oracle Sun Solaris 9 and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Filesystem/cachefs.
Published: 01/17/2013
CVSS Severity: 6.6 (MEDIUM)
Summary: Unspecified vulnerability in Oracle Sun Solaris 9 and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Utility/Umount.
Published: 01/17/2013
CVSS Severity: 6.6 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Diagnostics.
Published: 01/17/2013
CVSS Severity: 6.4 (MEDIUM)
Summary: Unspecified vulnerability in the Application Performance Management (APM) component in Oracle Enterprise Manager Grid Control 6.5, 11.1, and 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Business Transaction Management, a different vulnerability than CVE-2013-0360.
Published: 01/17/2013
CVSS Severity: 5.0 (MEDIUM)
Summary: Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.51 and 8.52 allows remote authenticated users to affect integrity via unknown vectors related to Security.
Published: 01/17/2013
CVSS Severity: 4.0 (MEDIUM)
Summary: Unspecified vulnerability in the PeopleSoft HRMS component in Oracle PeopleSoft Products 9.0 and 9.1 allows remote attackers to affect confidentiality via unknown vectors related to Candidate Gateway.
Published: 01/17/2013
CVSS Severity: 5.0 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0418.
Published: 01/17/2013
CVSS Severity: 6.8 (MEDIUM)
Summary: Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.51 and 8.52 allows remote attackers to affect integrity via unknown vectors related to Portal, a different vulnerability than CVE-2012-5059.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.52 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Security.
Published: 01/17/2013
CVSS Severity: 5.5 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect integrity via unknown vectors related to Bookmarkable Pages.
Published: 01/17/2013
CVSS Severity: 2.1 (LOW)
Summary: Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.
Published: 01/17/2013
CVSS Severity: 6.8 (MEDIUM)
Summary: Unspecified vulnerability in the PeopleSoft HRMS component in Oracle PeopleSoft Products 9.1 allows remote attackers to affect integrity via unknown vectors related to Mobile Company Directory.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.51 and 8.52 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to PeopleCode.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Stored Procedure.
Published: 01/17/2013
CVSS Severity: 6.8 (MEDIUM)
Summary: Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users to affect confidentiality and integrity via unknown vectors related to Server Replication.
Published: 01/17/2013
CVSS Severity: 6.6 (MEDIUM)
Summary: Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Information Schema.
Published: 01/17/2013
CVSS Severity: 6.8 (MEDIUM)
Summary: Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote attackers to affect availability via unknown vectors related to Server Locking.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Campaign Management.
Published: 01/17/2013
CVSS Severity: 6.4 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Application Framework.
Published: 01/17/2013
CVSS Severity: 6.4 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Payroll component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to View Payslip.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Siebel CRM component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect integrity via unknown vectors related to Siebel Calendar, a different vulnerability than CVE-2013-0378.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Siebel CRM component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect integrity via unknown vectors related to Siebel Calendar, a different vulnerability than CVE-2013-0379.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Client System Analyzer.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Diagnostics.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.1.28 and earlier, allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Server Replication.
Published: 01/17/2013
CVSS Severity: 5.5 (MEDIUM)
Summary: Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.1, and 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Database Cloning.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)
Summary: Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.1, and 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Distributed/Cross DB Features.
Published: 01/17/2013
CVSS Severity: 4.3 (MEDIUM)