Late Yesterday's NIST CVE Issuance's For Vulns In The TripAdvisor app, CoolPDF, Foxit Advanced PDF Editor, the web-based management interface on the TP-LINK TL-WR841N router And SUSE WebYaST

Summary: The TripAdvisor app 6.6 for iOS sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.

Published: 01/26/2013

Summary: Stack-based buffer overflow in the reader in CoolPDF 3.0.2.256 allows remote attackers to execute arbitrary code via a PDF document with a crafted stream.

Published: 01/26/2013

Summary: Stack-based buffer overflow in Foxit Advanced PDF Editor 3 before 3.04 might allow remote attackers to execute arbitrary code via a crafted document containing instructions that reconstruct a certain security cookie.

Published: 01/26/2013

Summary: Directory traversal vulnerability in the web-based management interface on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201 Rel.54965n and earlier allows remote attackers to read arbitrary files via the URL parameter.

Published: 01/26/2013

Summary: SUSE WebYaST before 1.2 0.2.63-0.6.1 allows remote attackers to modify the hosts list, and subsequently conduct man-in-the-middle attacks, via a crafted /host request on TCP port 4984.

Published: 01/26/2013