Vulnerability Summary for the Week of March 3, 2014

Please Note:

• The vulnerabilities are cattegorized by their level of severity which is either High, Medium or Low.

• The CVE indentity number is the publicly known ID given to that particular vulnerability. Therefore you can search the status of that particular vulnerability using that ID.

• The CVSS (Common Vulnerability Scoring System) score is a standard scoring system used to determine the severity of the vulnerability.

High Severity Vulnerabilities The Primary Vendor --- Description Date CVSS The CVE Product Published Score Identity adrotateplugin -- adrotate SQL injection vulnerability in 2014-02-27 7.5 CVE-2014-1854 library/clicktracker.php in the AdRotate Pro plugin 3.9 through 3.9.5 and AdRotate Free plugin 3.9 through 3.9.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the track parameter. apple -- quicktime Apple QuickTime before 7.7.5 does not initialize 2014-02-26 9.3 CVE-2014-1243 an unspecified pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted track list in a movie file. apple -- quicktime Buffer overflow in Apple QuickTime before 7.7.5 2014-02-26 9.3 CVE-2014-1244 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding. apple -- quicktime Integer signedness error in Apple QuickTime 2014-02-26 9.3 CVE-2014-1245 before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted stsz atom in a movie file. apple -- quicktime Buffer overflow in Apple QuickTime before 7.7.5 2014-02-26 9.3 CVE-2014-1246 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ftab atom in a movie file. apple -- quicktime Apple QuickTime before 7.7.5 allows remote 2014-02-26 9.3 CVE-2014-1247 attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted dref atom in a movie file. apple -- quicktime Buffer overflow in Apple QuickTime before 7.7.5 2014-02-26 9.3 CVE-2014-1248 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ldat atom in a movie file. apple -- quicktime Buffer overflow in Apple QuickTime before 7.7.5 2014-02-26 9.3 CVE-2014-1249 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PSD image. apple -- quicktime Apple QuickTime before 7.7.5 does not properly 2014-02-26 9.3 CVE-2014-1250 perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted ttfo element in a movie file. apple -- quicktime Buffer overflow in Apple QuickTime before 7.7.5 2014-02-26 9.3 CVE-2014-1251 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted clef atom in a movie file. apple -- mac_os_x Apple Type Services (ATS) in Apple OS X before 2014-02-26 7.5 CVE-2014-1255 10.9.2 does not properly validate calls to the free function, which allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages. apple -- mac_os_x Buffer overflow in Apple Type Services (ATS) in 2014-02-26 7.5 CVE-2014-1256 Apple OS X before 10.9.2 allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages. apple -- mac_os_x Integer signedness error in CoreText in Apple OS 2014-02-26 7.5 CVE-2014-1261 X before 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Unicode font. apple -- mac_os_x Apple Type Services (ATS) in Apple OS X before 2014-02-26 7.5 CVE-2014-1262 10.9.2 allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages that trigger memory corruption. autodesk -- autocad Autodesk AutoCAD before 2014 allows remote 2014-02-22 7.5 CVE-2014-0818 attackers to execute arbitrary VBScript code via a crafted FAS file search path. belkin -- The peerAddresses API in Belkin WeMo Home 2014-02-22 7.8 CVE-2013-6948 wemo_home_automation Automation firmware before 3949 allows remote _firmware attackers to conduct XML injection attacks and read arbitrary files via unspecified vectors. belkin -- The Belkin WeMo Home Automation firmware 2014-02-22 9.3 CVE-2013-6949 wemo_home_automation before 3949 does not properly restrict the use of _firmware STUN and TURN proxies, which allows man-in- the-middle attackers to bypass intended access restrictions via crafted packets. belkin -- The Belkin WeMo Home Automation firmware 2014-02-22 7.8 CVE-2013-6950 wemo_home_automation before 3949 does not use SSL for the distribution _firmware feed, which allows remote attackers to obtain sensitive information by sniffing the network. belkin -- The Belkin WeMo Home Automation firmware 2014-02-22 7.1 CVE-2013-6951 wemo_home_automation before 3949 does not maintain a set of _firmware Certification Authority public keys, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary X.509 certificate. Medium Severity Vulnerabilities The Primary Description Date Published CVSS The CVE Vendor --- Product Score Identity

7andi-fs.co -- The Denny's application before 2.0.1 for Android 26/02/14 5.8 CVE-2014-1967 denny's does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. apache -- tomcat Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 2014-02-26 5.8 CVE-2013-4286 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers, which allows remote attackers to trigger incorrect identification of a request's length and conduct request-smuggling attacks via (1) multiple Content- Length headers or (2) a Content-Length header and a "Transfer-Encoding: chunked" header. NOTE: this vulnerability exists because of an incomplete fix for CVE-2005-2090. apache -- tomcat Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 2014-02-26 4.3 CVE-2013-4322 8.x before 8.0.0-RC10 processes chunked transfer coding without properly handling (1) a large total amount of chunked data or (2) whitespace characters in an HTTP header value within a trailer field, which allows remote attackers to cause a denial of service by streaming data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3544. apache -- tomcat Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 2014-02-26 4.3 CVE-2013-4590 8.x before 8.0.0-RC10 allows attackers to obtain "Tomcat internals" information by leveraging the presence of an untrusted web application with a context.xml, web.xml, *.jspx, *.tagx, or *.tld XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. apache -- tomcat org/apache/catalina/connector/CoyoteAdapter.java 2014-02-26 4.3 CVE-2014-0033 in Apache Tomcat 6.0.33 through 6.0.37 does not consider the disableURLRewriting setting when handling a session ID in a URL, which allows remote attackers to conduct session fixation attacks via a crafted URL. apple -- mac_os_x Apple Type Services (ATS) in Apple OS X before 2014-02-26 6.8 CVE-2014-1254 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Type 1 font that is embedded in a document. apple -- mac_os_x Heap-based buffer overflow in CoreAnimation in 2014-02-26 6.8 CVE-2014-1258 Apple OS X before 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image. apple -- mac_os_x Buffer overflow in File Bookmark in Apple OS X 2014-02-26 6.8 CVE-2014-1259 before 10.9.2 allows attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted filename. apple -- mac_os_x QuickLook in Apple OS X through 10.8.5 allows 2014-02-26 6.8 CVE-2014-1260 remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document. apple -- mac_os_x curl in Apple OS X 10.9.x before 10.9.2 does not 2014-02-26 4.3 CVE-2014-1263 verify X.509 certificates from HTTPS servers that are accessed using a numerical IP address, which allows man-in-the-middle attackers to spoof servers via a crafted certificate. apple -- mac_os_x Finder in Apple OS X before 10.9.2 does not ensure 2014-02-26 4.4 CVE-2014-1264 ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL. apple -- mac_os_x The systemsetup program in the Date and Time 2014-02-26 4.6 CVE-2014-1265 subsystem in Apple OS X before 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock. apple -- apple_tv The SSLVerifySignedServerKeyExchange function in 2014-02-22 6.8 CVE-2014-1266 libsecurity_ssl/lib/sslKeyExchange.c in the Secure Transport feature in the Data Security component in Apple iOS 6.x before 6.1.6 and 7.x before 7.0.6, Apple TV 6.x before 6.0.2, and Apple OS X 10.9.x before 10.9.2 does not check the signature in a TLS Server Key Exchange message, which allows man- in-the-middle attackers to spoof SSL servers by (1) using an arbitrary private key for the signing step or (2) omitting the signing step. apple -- safari WebKit, as used in Apple Safari before 6.1.2 and 7.x 2014-02-26 6.8 CVE-2014-1268 before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1269 and CVE-2014-1270. apple -- safari WebKit, as used in Apple Safari before 6.1.2 and 7.x 2014-02-26 6.8 CVE-2014-1269 before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1268 and CVE-2014-1270. apple -- safari WebKit, as used in Apple Safari before 6.1.2 and 7.x 2014-02-26 6.8 CVE-2014-1270 before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1268 and CVE-2014-1269. autodesk -- autocad Untrusted search path vulnerability in Autodesk 2014-02-22 4.4 CVE-2014-0819 AutoCAD before 2014 allows local users to gain privileges via a Trojan horse DLL in the current working directory. blackboard -- Cross-site scripting (XSS) vulnerability in Blackboard 2014-02-22 4.3 CVE-2014-0811 vista/ce Vista/CE 8.0 SP6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. cisco -- Cisco Unified Computing System (UCS) Central 2014-02-22 6.8 CVE-2014-0730 unified_computing Software 1.1 and earlier allows local users to gain _system_central_so privileges via a CLI copy command in a local-mgmt ftware context, aka Bug ID CSCul53128. cisco -- The administration interface in Cisco Unified 2014-02-22 5.0 CVE-2014-0731 unified_communica Communications Manager (Unified CM) 10.0(1) and tions_manager earlier allows remote attackers to bypass authentication and read Java .class files via a direct request, aka Bug ID CSCum46497. cisco -- Cisco Unified IP Phone 7960G allows remote 2014-02-22 4.3 CVE-2014-0737 unified_ip_phone_7 attackers to bypass authentication and change trust 960g relationships by injecting a Certificate Trust List (CTL) file, aka Bug ID CSCuj66795. cisco -- The Phone Proxy component in Cisco Adaptive 2014-02-22 4.3 CVE-2014-0738 adaptive_security_a Security Appliance (ASA) Software allows remote ppliance_software attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List (CTL) file, aka Bug ID CSCuj66770. cisco -- Race condition in the Phone Proxy component in 2014-02-22 4.3 CVE-2014-0739 adaptive_security_a Cisco Adaptive Security Appliance (ASA) Software ppliance_software allows remote attackers to bypass sec_db authentication and provide certain pass-through services to untrusted devices via a crafted configuration-file TFTP request, aka Bug ID CSCuj66766. cisco -- Cross-site request forgery (CSRF) vulnerability in the 2014-02-26 4.3 CVE-2014-0740 unified_communica Call Detail Records Analysis and Reporting (CAR) tions_manager interface in the OS Administration component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to hijack the authentication of administrators for requests that make administrative changes, aka Bug ID CSCun00701. cisco -- The certificate-import feature in the Certificate 2014-02-26 6.2 CVE-2014-0741 unified_communica Authority Proxy Function (CAPF) CLI tions_manager implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461. cisco -- The Certificate Authority Proxy Function (CAPF) CLI 2014-02-26 6.2 CVE-2014-0742 unified_communica implementation in the CSR management feature in tions_manager Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464. cisco -- The Certificate Authority Proxy Function (CAPF) 2014-02-26 5.0 CVE-2014-0743 unified_communica component in Cisco Unified Communications tions_manager Manager (Unified CM) 10.0(1) and earlier allows remote attackers to bypass authentication and modify registered-device information via crafted data, aka Bug ID CSCum95468. cisco -- Cross-site request forgery (CSRF) vulnerability in the 2014-02-26 6.8 CVE-2014-0745 unified_contact_ce Unified Serviceability subsystem in Cisco Unified nter_express_editor Contact Center Express (Unified CCX) allows remote _software attackers to hijack the authentication of arbitrary users, aka Bug ID CSCum95502. cisco -- The disaster recovery system (DRS) in Cisco Unified 2014-02-26 4.0 CVE-2014-0746 unified_contact_ce Contact Center Express (Unified CCX) allows remote nter_express_editor authenticated users to obtain sensitive information _software by reading extraneous fields in an HTML document, aka Bug ID CSCum95536. cisco -- The Certificate Authority Proxy Function (CAPF) CLI 2014-02-26 6.8 CVE-2014-0747 unified_communica implementation in Cisco Unified Communications tions_manager Manager (Unified CM) 10.0(1) and earlier allows local users to inject commands via unspecified CAPF programs, aka Bug ID CSCum95493. cisco -- Cisco Unified Contact Center Express (Unified CCX) 2014-02-26 4.0 CVE-2014-2102 unified_contact_ce does not properly restrict the content of the nter_express_editor CCMConfig page, which allows remote _software authenticated users to obtain sensitive information by examining this content, aka Bug ID CSCum95575. cisco -- Cisco Intrusion Prevention System (IPS) Software 2014-02-27 6.8 CVE-2014-2103 intrusion_preventio allows remote attackers to cause a denial of service n_system (MainApp process outage) via malformed SNMP packets, aka Bug IDs CSCum52355 and CSCul49309. cybozu -- garoon Cybozu Garoon 2.x through 2.5.4 and 3.x through 2014-02-26 4.9 CVE-2014-0817 3.7 SP3 does not properly manage sessions, which allows remote authenticated users to impersonate arbitrary users via unspecified vectors. cybozu -- garoon Directory traversal vulnerability in the download 2014-02-26 4.0 CVE-2014-0820 feature in Cybozu Garoon 2.x through 2.5.4 and 3.x through 3.7 SP3 allows remote authenticated users to read arbitrary files via unspecified vectors. cybozu -- garoon SQL injection vulnerability in the download feature 2014-02-26 6.8 CVE-2014-0821 in Cybozu Garoon 2.x through 2.5.4 and 3.x through 3.7 SP3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2013- 6930 and CVE-2013-6931. google -- chrome The XSSAuditor::init function in 2014-02-23 5.0 CVE-2013-6656 core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 33.0.1750.117, processes POST requests by using the body of a redirecting page instead of the body of a redirect target, which allows remote attackers to obtain sensitive information via unspecified vectors. google -- chrome core/html/parser/XSSAuditor.cpp in the XSS auditor 2014-02-23 6.4 CVE-2013-6657 in Blink, as used in Google Chrome before 33.0.1750.117, inserts the about:blank URL during certain blocking of FORM elements within HTTP requests, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified vectors. google -- chrome The 2014-02-23 6.4 CVE-2013-6659 SSLClientSocketNSS::Core::OwnAuthCertHandler function in net/socket/ssl_client_socket_nss.cc in Google Chrome before 33.0.1750.117 does not prevent changes to server X.509 certificates during renegotiations, which allows remote SSL servers to trigger use of a new certificate chain, inconsistent with the user's expectations, by initiating a TLS renegotiation. google -- chrome The drag-and-drop implementation in Google 2014-02-23 5.0 CVE-2013-6660 Chrome before 33.0.1750.117 does not properly restrict the information in WebDropData data structures, which allows remote attackers to discover full pathnames via a crafted web site. hp -- Multiple cross-site request forgery (CSRF) 2014-02-23 6.8 CVE-2013-6202 service_manager vulnerabilities in HP Service Manager 9.30, 9.31, 9.32, and 9.33 allow remote attackers to hijack the authentication of unspecified victims for requests that (1) insert XSS sequences or (2) execute arbitrary code. i-doit -- i-doit Cross-site scripting (XSS) vulnerability in the API in 2014-02-27 4.3 CVE-2014-2231 synetics i-doit pro before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via a property title. ibm -- IBM Netezza Performance Portal 2.x before 2.0.0.3 2014-02-26 4.0 CVE-2013-6731 netezza_performan allows remote authenticated users to change ce_portal arbitrary passwords via an HTTP POST request. ibm -- Cross-site scripting (XSS) vulnerability in the server 2014-02-22 4.3 CVE-2013-6732 cognos_business_in in IBM Cognos Business Intelligence (BI) 10.1 before telligence IF6 and 10.2 before IF7 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter. ibm -- IBM Rational Focal Point 6.4.x and 6.5.x before 2014-02-25 4.0 CVE-2014-0839 rational_focal_point 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to modify data via vectors involving a direct object reference. ibm -- The account-creation functionality in IBM Rational 2014-02-25 5.0 CVE-2014-0842 rational_focal_point Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 places the new user's default password within the creation page, which allows remote attackers to obtain sensitive information by reading the HTML source code. ibm -- The server in IBM Cognos Business Intelligence (BI) 2014-02-22 5.0 CVE-2014-0854 cognos_business_in 10.1 before IF6 and 10.2 before IF7 allows remote telligence attackers to read arbitrary files via a crafted DOCTYPE declaration in an XML document. icinga -- icinga Stack-based buffer overflow in the cmd_submitf 2014-02-28 5.0 CVE-2014-1878 function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote attackers to cause a denial of service (segmentation fault) via a long message to cmd.cgi. ikiwiki_hosting_pro Multiple cross-site scripting (XSS) vulnerabilities in 2014-02-25 4.3 CVE-2013-6047 ject -- the site creation interface in ikiwiki-hosting before ikiwiki_hosting 0.20131025 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. interworx -- Cross-site scripting (XSS) vulnerability in xhr.php in 2014-02-27 4.3 CVE-2014-2035 web_control_panel InterWorx Web Control Panel (aka InterWorx Hosting Control Panel and InterWorx-CP) before 5.0.13 build 574 allows remote attackers to inject arbitrary web script or HTML via the i parameter. libpng -- libpng The png_push_read_chunk function in pngpread.c 2014-02-27 5.0 CVE-2014-0333 in the progressive decoder in libpng 1.6.x through 1.6.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an IDAT chunk with a length of zero. linux -- linux_kernel The cifs_iovec_write function in fs/cifs/file.c in the 2014-02-28 6.2 CVE-2014-0069 Linux kernel through 3.13.5 does not properly handle uncached write operations that copy fewer than the requested number of bytes, which allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory corruption and system crash), or possibly gain privileges via a writev system call with a crafted pointer. linux -- linux_kernel The security_context_to_sid_core function in 2014-02-28 4.4 CVE-2014-1874 security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by leveraging the CAP_MAC_ADMIN capability to set a zero-length security context. linux -- linux_kernel arch/s390/kernel/head64.S in the Linux kernel 2014-02-28 4.9 CVE-2014-2039 before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local users to cause a denial of service (system crash) by executing a crafted instruction. martin_nagy -- The handle_connection_error function in 2014-02-26 4.3 CVE-2012-2134 bind-dyndb-ldap ldap_helper.c in bind-dyndb-ldap before 1.1.0rc1 does not properly handle LDAP query errors, which allows remote attackers to cause a denial of service (infinite loop and named server hang) via a non- alphabet character in the base DN in an LDAP search DNS query. mcafee -- The Import and Export Framework in McAfee 2014-02-26 6.3 CVE-2014-2205 epolicy_orchestrato ePolicy Orchestrator (ePO) before 4.6.7 Hotfix r 940148 allows remote authenticated users with permissions to add dashboards to read arbitrary files by importing a crafted XML file, related to an XML External Entity (XXE) issue. microsoft -- The Microsoft.XMLDOM ActiveX control in Microsoft 2014-02-26 5.8 CVE-2013-7331 internet_explorer Windows 8.1 and earlier allows remote attackers to determine the existence of local pathnames, UNC share pathnames, intranet hostnames, and intranet IP addresses by examining error codes, as demonstrated by a res:// URL, and exploited in the wild in February 2014.

Low Severity Vulnerabilities The Primary Description Date Published CVSS The CVE Vendor --- Product Score Identity apple -- mac_os_x CFNetwork in Apple OS X through 10.8.5 does not 2014-02-26 3.6 CVE-2014-1257 remove session cookies upon a Safari reset action, which allows physically proximate attackers to bypass intended access restrictions by leveraging an unattended workstation. catfish_project -- Untrusted search path vulnerability in Catfish 2014-02-26 1.9 CVE-2014-2093 catfish through 0.4.0.3 allows local users to gain privileges via a Trojan horse catfish.py in the current working directory. catfish_project -- Untrusted search path vulnerability in Catfish 2014-02-26 1.9 CVE-2014-2094 catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the current working directory. catfish_project -- Untrusted search path vulnerability in Catfish 0.6.0 2014-02-26 1.9 CVE-2014-2095 catfish through 1.0.0, when a Fedora package such as 0.8.2- 1 is not used, allows local users to gain privileges via a Trojan horse bin/catfish.pyc under the current working directory. catfish_project -- Untrusted search path vulnerability in Catfish 0.6.0 2014-02-26 1.9 CVE-2014-2096 catfish through 1.0.0 allows local users to gain privileges via a Trojan horse bin/catfish.py under the current working directory. emberjs -- ember.js Cross-site scripting (XSS) vulnerability in the link-to 2014-02-27 2.6 CVE-2014-0046 helper in Ember.js 1.2.x before 1.2.2, 1.3.x before 1.3.2, and 1.4.x before 1.4.0-beta.6, when used in non-block form, allows remote attackers to inject arbitrary web script or HTML via the title attribute. ibm -- IBM WebSphere eXtreme Scale Client through 8.6.0 2014-02-22 3.5 CVE-2013-6734 websphere_extrem does not properly isolate the cached data of e_scale_client different users, which allows remote authenticated users to obtain sensitive information in opportunistic circumstances by leveraging access to the same web container. ibm -- Multiple cross-site scripting (XSS) vulnerabilities in 2014-02-25 3.5 CVE-2014-0840 rational_focal_poi IBM Rational Focal Point 6.4.x and 6.5.x before nt 6.5.2.3 and 6.6.x before 6.6.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. ibm -- Cross-site scripting (XSS) vulnerability in IBM 2014-02-25 3.5 CVE-2014-0843 rational_focal_poi Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and nt 6.6.x before 6.6.1 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file. ibm -- Multiple cross-site scripting (XSS) vulnerabilities in 2014-02-25 3.5 CVE-2014-0853 rational_focal_poi the (1) ForwardController and (2) AttributeEditor nt scripts in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. ibm -- IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 2014-02-27 3.5 CVE-2014-0858 content_navigator allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL. ibm -- Cross-site scripting (XSS) vulnerability in the server in 2014-02-22 3.5 CVE-2014-0861 cognos_business_i IBM Cognos Business Intelligence (BI) 10.1 before IF6 ntelligence and 10.2 before IF7 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter that is not properly handled during use of the back/return button. ibm -- Cross-site scripting (XSS) vulnerability in IBM 2014-02-28 3.5 CVE-2014-0874 content_navigator Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter.

• Sources: http://nvd.nist.gov (For more information visit the National Vulnerabilities Database (NVD) which contains a database of every vulnerability that has ever been published).