+ JK-1.2.28 released
http://tomcat.apache.org/connectors-doc/news/20090301.html#22%20March%20-%20JK-1.2.28%20released
http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html
Changes in MySQL 5.1.34 (Not yet released)
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-34.html
スパイウェア検索エンジン 6.2 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1231
RHSA-2009:0398-1 Critical: seamonkey security update
http://rhn.redhat.com/errata/RHSA-2009-0398.html
RHSA-2009:0360-01: Important: kernel-rt security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28785
Aurora-SA-03/27/2009: Aurora Nutritive Analysis Module Multiple XSS
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28792
Novell-SA-03/27/2009: Novell Netstorage Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28791
Failure due to malformed request to the server when enabling NTP Client
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009364&sliceId=1&docTypeID=DT_KB_1_1
View client keyboard and mouse do not work with SMS remote control
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009435&sliceId=1&docTypeID=DT_KB_1_1
Fonts are distorted in Windows virtual machine
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009451&sliceId=1&docTypeID=DT_KB_1_1
VMware SQL Server Plug-in Automatic Filter Discovery
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009519&sliceId=1&docTypeID=DT_KB_1_1
Aurora Nutritive Analysis Module Multiple XSS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-03/msg00248.html
Novell Netstorage Multiple Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-03/msg00253.html
Moodle: Sensitive File Disclosure
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-03/msg00249.html
Solution 254611: Multiple Security Vulnerabilities in Java Plug-in May Allow Privileges to be Escalated
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254611-1
52956 : Acute Control Panel index.php username Parameter SQL Injection
http://osvdb.org/show/osvdb/52956
52955 : Acute Control Panel themes/header.php theme_directory Parameter Remote File Inclusion
http://osvdb.org/show/osvdb/52955
RHSA-2009:0398-1 Critical: seamonkey security update
http://rhn.redhat.com/errata/RHSA-2009-0398.html
Critical Path Memova Input Validation Hole Permits Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2009/Mar/1021938.html
Mozilla Firefox XML Stylesheet Transformation Bug Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021939.html
RHSA-2009:0398-1 Critical: seamonkey security update
http://rhn.redhat.com/errata/RHSA-2009-0398.html
RHSA-2009:0397-1 Critical: firefox security update
http://rhn.redhat.com/errata/RHSA-2009-0397.html
bzip2 Unspecified File Handling Vulnerability
http://www.securityfocus.com/bid/28286
Mozilla Firefox XSL Parsing 'root' XML Tag Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34235
Mozilla Firefox '_moveToEdgeShift' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34181
Apple Safari Unspecified Remote Code Execution Variant Vulnerability
http://www.securityfocus.com/bid/34179
Linux Kernel nfsd 'CAP_MKNOD' Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/34205
phpBB Account Re-Activation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/32842
VLC Media Player Web Interface 'input' Parameter Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34126
Drupal Printer, e-mail and PDF versions Module Flood Control API Open Email Relay Vulnerability
http://www.securityfocus.com/bid/34173
XM Easy Personal FTP Server 'NLST' Command Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31739
My Simple Forum Local File Include and Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/34280
Abee CHM Maker 'FileName' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34279
PowerCHM '.HHP' File Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34263
GNOME glib Base64 Encoding and Decoding Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34100
Squid Proxy Cache ICAP Adaptation Denial of Service Vulnerability
http://www.securityfocus.com/bid/34277
Arcadwy 'register.php' HTML Injection Vulnerability
http://www.securityfocus.com/bid/34275
iJoomla Archive Component 'catid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/34011
DHCart Multiple Cross Site Scripting And HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/32117
Scripts Den Dating Website Script 'searchmatch.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/33746
RETIRED: iJoomla News Portal Component 'Itemid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/29604
YAP Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/34274
freeSSHd SFTP 'rename' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31872
Free PHP Petition Signing Script Login Page SQL Injection Vulnerability
http://www.securityfocus.com/bid/34273
Simply Classified 'adverts.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/34271
XWork 'ParameterInterceptor' Class OGNL Security Bypass Vulnerability
http://www.securityfocus.com/bid/32101
Critical Path Presentation Server HTML Injection Vulnerability
http://www.securityfocus.com/bid/34270
Netatalk Printing Request Arbitrary Command Injection Vulnerability
http://www.securityfocus.com/bid/32925
RETIRED: Joomla! and Mambo DigiStore Component 'pid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/33953
Aurora FoodPro Nutritive Analysis Module Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/34269
Forte Agent XML File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34268
Linux Kernel 'sock.c' SO_BSDCOMPAT Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33846
Linux Kernel 'dell_rbu' Local Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/33428
Linux Kernel 'readlink' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33412
Linux Kernel 'keyctl_join_session_keyring()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/33339
Adobe Acrobat and Reader PDF File Handling JBIG2 Image Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/33751
Adobe Acrobat and Reader Collab 'getIcon()' JavaScript Method Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34169
Adobe Acrobat and Reader JBIG2 Image Processing Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/34229
FFmpeg 'libavformat/4xm.c' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/33502
Drupal Feed Element Mapper Module Content Title Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/34266
Microsoft GDI+ EMF 'GpFont.SetData()' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34250
Acute Control Panel SQL Injection Vulnerability and Remote File Include Vulnerability
http://www.securityfocus.com/bid/34265
XAMPP for Windows 'adodb.php' Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/31472
Serv-U FTP Server 'MKD' Command Directory Traversal Vulnerability
http://www.securityfocus.com/bid/34125
WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/34075
SystemTap Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34260
PhotoStand BASE64 Administrator Nickname Cookie Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/34262
OpenSolaris Module Debugger Process Cross Zone Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34272
CCCP Community Clan Portal Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/34264
Blogplus Multiple Local File Include Vulnerabilities
http://www.securityfocus.com/bid/34261
eZip Wizard Zip File Stack Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34044
phpMyAdmin BLOB Streaming Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/34253
phpMyAdmin 'export page' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34251
phpMyAdmin 'setup.php' PHP Code Injection Vulnerability
http://www.securityfocus.com/bid/34236
Novell NetStorage Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/34267
Moodle TeX Filter Remote File Disclosure Vulnerability
http://www.securityfocus.com/bid/34278
「WORM_DOWNAD」(ダウンアド)ファミリ発症日:2009年4月1日を控えたセキュリティ対策確認に関する注意喚起
http://www.trendmicro.co.jp/support/news.asp?id=1235
US-CERT Technical Cyber Security Alert TA09-088A -- Conficker Worm Targets Microsoft Windows Systems
http://www.derkeiler.com/Mailing-Lists/Cert/2009-03/msg00001.html
Mozillaが「Firefox 3.0.8」公開,緊急のセキュリティ・ホール2件を修正
http://itpro.nikkeibp.co.jp/article/NEWS/20090330/327435/?ST=security
JVNDB-2008-001647 Jasmine の WebLink テンプレート実行時における複数の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001647.html
JVNDB-2007-000217 Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000217.html
JVNDB-2005-000866 Apache Tomcat における HTTP Request Smuggling の脆弱性
http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000866.html
Devel-NYTProf-2.09
http://cpansearch.perl.org/src/TIMB/Devel-NYTProf-2.09/README
欧州における情報セキュリティ関連動向調査報告書
http://www.ipa.go.jp/security/fy20/reports/fraunhofer/index.html
イスラエルにおける情報セキュリティ関連動向調査報告書
http://www.ipa.go.jp/security/fy20/reports/israel/index.html
2008年度第2回 情報セキュリティに関する脅威に対する意識調査の報告書公開
~ 認知されていない、USBメモリ利用時の危険性 ~
http://www.ipa.go.jp/security/fy20/reports/ishiki02/press.html
重要インフラの制御システムセキュリティとITサービス継続に関する調査報告書
http://www.ipa.go.jp/security/fy20/reports/ics-sec/index.html
世界規模のスパイ・ネットワーク「GhostNet」,トロント大学らが報告
http://itpro.nikkeibp.co.jp/article/NEWS/20090330/327420/?ST=security
JVNDB-2008-002301 Drupal におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002301.html
JVNDB-2008-002300 Drupal のアップデート機能におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002300.html
JVNDB-2009-001107 Vim の netrw.vim における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001107.html
JVNDB-2009-001106 Vim の shellescape 関数における ZIP アーカイブファイル名に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001106.html
JVNDB-2009-001105 Vim の shellescape 関数における tar アーカイブファイル名に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001105.html
JVNDB-2009-001104 libpng が適切にエレメントポインタを初期化しない脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001104.html
0 件のコメント:
コメントを投稿