6.723 - Released On 2015-11-04T10:37:11.000-08:00

Newly Added (4)

• ManageEngine.SD.Plus.FileUploader.Arbitrary.File.Upload (critical)
• MS.Office.RTF.AceCnfViewer.Sortie.DoS (medium)
• MS.Office.Word.Document.Hash.Object.Memory.Corruption (high)
• Nibbleblog.MyImage.Arbitrary.File.Upload (high)

Updated (9)

• HTTP.Header.SQL.Injection (high)
• Mozilla.Firefox.CSS.Font.Face.Remote.Code.Execution (high)
• MS.Excel.BoundSheet.Record.Memory.Corruption (high)
• MS.GDIPLUS.BMP.Width.Parsing.Remote.Code.Execution (high)
• MS.IE.toStaticHTML.Information.Disclosure (high)
• Obfuscated.Flash.Exploit (critical)
• Oracle.Java.docBase.Parameter.Overflow (low)
• Quest.Big.Brother.Arbitrary.File.Deletion.and.Overwrite (critical)
• Wavelink.Emulation.License.Server.Header.Proc.Buffer.Overflow (critical)

Renamed (0)

Attribute Changed (21)

• Adobe.Flash.Decoding.Function.Use.After.Free (Default_action updated to 'drop' from 'pass')
• Advantech.WebAccess.SCADA.Password.Parameter.Buffer.Overflow (Severity updated to 'medium' from 'low')
• AjaxControl.Arbitrary.File.Upload.Directory.Traversal (Default_action updated to 'drop' from 'pass')
• Centreon.GetStats.Arbitrary.Command.Execution (Default_action updated to 'drop' from 'pass')
• FG-VD-15-080-Zimbra (Default_action updated to 'drop' from 'pass')
• FG-VD-15-081-Zimbra (Default_action updated to 'drop' from 'pass')
• HP.Data.Protector.CRS.Opcode.235.Stack.Buffer.Overflow (Default_action updated to 'drop' from 'pass')
• IBM.Tivoli.StorageManager.FastBack.Opcode1331.Command.Injection (Default_action updated to 'drop' from 'pass')
• IMAP.Commands.NULL.Pointer.DoS (Default_action updated to 'drop' from 'pass')
• ManageEngine.OpManager.APMAlertOperationsServlet.SQL.Injection (Default_action updated to 'drop' from 'pass')
• MS.IE.ArrayBuffer.EntrySlice.Memory.Corruption (Default_action updated to 'drop' from 'pass')
• MS.IE.CWindow.Object.Custom.HTML.Doc.Memory.Corruption (Default_action updated to 'drop' from 'pass')
• MS.IE.Scripting.Engine.Regex.Object.Memory.Corruption (Default_action updated to 'drop' from 'pass')
• MS.IE.VBScript.Filter.Memory.Corruption (Default_action updated to 'drop' from 'pass')
• MS.IE.VBScript.Regular.Expression.Memory.Corruption (Default_action updated to 'drop' from 'pass')
• MS.Office.Word.Use.After.Free (Default_action updated to 'drop' from 'pass')
• MS.Windows.Kernel.ALPC.Event.Handling.Privilege.Elevation (Default_action updated to 'drop' from 'pass')
• MS.Windows.Restricted.Token.Sandbox.Bypass (Default_action updated to 'drop' from 'pass')
• Novell.GroupWise.WebAccess.XSS (Default_action updated to 'drop' from 'pass')
• Reprise.License.Manager.Directory.Traversal (Default_action updated to 'drop' from 'pass')
• WordPress.xmlrpc.php.wp.getUsersBlogs.Brute.Force (Default_action updated to 'drop' from 'pass')

Deprecated (3)

• BMP.File.Width.Height.Buffer.Overflow (low)
• MS.Windows.GRE.BMP.File.Parsing.Integer.Overflow (high)
• Oracle.Java.docBase.Parameter.Buffer.Overflow (high)