[VIM] [CVENEW] New CVE CANs: 2013/03/14 21:00 ; count=11

coley at mitre.org coley at mitre.org
Thu Mar 14 20:04:26 CDT 2013 

======================================================
Name: CVE-2013-0248
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0248
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20121206
Category: 
Reference: BUGTRAQ:20130306 [SECURITY] CVE-2013-0248 Apache Commons FileUpload - Insecure examples
Reference: URL:http://archives.neohapsis.com/archives/bugtraq/2013-03/0035.html
Reference: OSVDB:90906
Reference: URL:http://www.osvdb.org/90906

The default configuration of javax.servlet.context.tempdir in Apache
Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for
uploaded files, which allows local users to overwrite arbitrary files
via an unspecified symlink attack.



======================================================
Name: CVE-2013-0960
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0960
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-2
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00003.html

WebKit in Apple Safari before 6.0.3 allows remote attackers to execute
arbitrary code or cause a denial of service (memory corruption) via a
crafted web site, a different vulnerability than CVE-2013-0961.



======================================================
Name: CVE-2013-0961
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0961
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-2
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00003.html

WebKit in Apple Safari before 6.0.3 allows remote attackers to execute
arbitrary code or cause a denial of service (memory corruption) via a
crafted web site, a different vulnerability than CVE-2013-0960.



======================================================
Name: CVE-2013-0966
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0966
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

The Apple mod_hfs_apple module for the Apache HTTP Server in Apple Mac
OS X before 10.8.3 does not properly handle ignorable Unicode
characters, which allows remote attackers to bypass intended directory
authentication requirements via a crafted pathname in a URI.



======================================================
Name: CVE-2013-0967
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0967
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

CoreTypes in Apple Mac OS X before 10.8.3 includes JNLP files in the
list of safe file types, which allows remote attackers to bypass a
Java plug-in disabled setting, and trigger the launch of Java Web
Start applications, via a crafted web site.



======================================================
Name: CVE-2013-0969
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0969
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

Login Window in Apple Mac OS X before 10.8.3 does not prevent
application launching with the VoiceOver feature, which allows
physically proximate attackers to bypass authentication and make
arbitrary System Preferences changes via unspecified use of the
keyboard.



======================================================
Name: CVE-2013-0970
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0970
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

Messages in Apple Mac OS X before 10.8.3 allows remote attackers to
bypass the FaceTime call-confirmation prompt via a crafted FaceTime:
URL.



======================================================
Name: CVE-2013-0971
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0971
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3
allows remote attackers to execute arbitrary code or cause a denial of
service (application crash) via crafted ink annotations in a PDF
document.



======================================================
Name: CVE-2013-0973
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0973
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

Software Update in Apple Mac OS X through 10.7.5 does not prevent
plugin loading within the marketing-text WebView, which allows
man-in-the-middle attackers to execute plugin code by modifying the
client-server data stream.



======================================================
Name: CVE-2013-0976
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0976
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130110
Category: 
Reference: APPLE:APPLE-SA-2013-03-14-1
Reference: URL:http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

IOAcceleratorFamily in Apple Mac OS X before 10.8.3 allows remote
attackers to execute arbitrary code or cause a denial of service
(memory corruption) via a crafted graphics image.



======================================================
Name: CVE-2013-2560
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2560
Final-Decision: 
Interim-Decision: 
Modified: 
Proposed: 
Assigned: 20130313
Category: 
Reference: BUGTRAQ:20130313 Re: [CVE-REQUEST] Foscam <= 11.37.2.48 path traversal vulnerability
Reference: URL:http://archives.neohapsis.com/archives/bugtraq/2013-03/0080.html

Directory traversal vulnerability in the web interface on Foscam
devices with firmware before 11.37.2.49 allows remote attackers to
read arbitrary files via a .. (dot dot) in the URI, as demonstrated by
discovering (1) web credentials or (2) Wi-Fi credentials.

More information about the VIM mailing list