- Solution 242267: Security Vulnerability in the ACL (acl(2)) Implementation for UFS File Systems May Allow a Local User to Panic the System
http://sunsolve.sun.com/search/document.do?assetkey=1-66-242267-1
+ [SECURITY] CVE-2009-0033 Apache Tomcat DoS when using Java AJP connector
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00043.html
http://www.securityfocus.com/bid/35193
+ [SECURITY] CVE-2009-0580 Apache Tomcat User enumeration vulnerability with FORM authentication
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00045.html
http://www.securityfocus.com/bid/35196
- RHSA-2009:1082-1: Important: cups security update
http://rhn.redhat.com/errata/RHSA-2009-1082.html
+ RHSA-2009:1083-1: Important: cups security update
http://rhn.redhat.com/errata/RHSA-2009-1083.html
- Red Hat update for kernel
http://secunia.com/advisories/35324/
+ Microsoft Windows "SystemParametersInfo()" Denial of Service
http://secunia.com/advisories/35323/
+ Linux Kernel e1000 Driver Denial of Service Vulnerability
http://secunia.com/advisories/35265/
http://www.securityfocus.com/bid/35185
+ Xvid Codec MBlock Indexing Buffer Overflow
http://www.iss.net/threats/325.html
+ Xvid Codec Initialization Logic Buffer Overflow
http://www.iss.net/threats/326.html
+ Linux Kernel CIFS Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34453/
[ANNOUNCE] Apache MINA 2.0.0-M6 released
http://mina.apache.org/downloads.html
iGallery-SA-06/03/2009: Blue-Collar Productions iGallery 4.1 Plus Arbitrary File Download
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29454
USN-780-1: CUPS vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29449
USN-781-1: Pidgin vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29450
USN-781-2: Gaim vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29451
CORE-2009-0420: Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29447
DSA 1810-1: New libapache-mod-jk packages fix information disclosure
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29437
DSA 1810-1: New cups/cupsys packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29438
[ MDVSA-2009:127 ] gaim
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00044.html
[USN-781-2] Gaim vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00040.html
[USN-781-1] Pidgin vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00039.html
[USN-780-1] CUPS vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00041.html
OCS Inventory NG 1.02 - Directory Traversal
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00046.html
Advisory: Apple QuickTime Image Description Atom Sign Extension Memory Corruption
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00038.html
Understanding how Virtual Desktop Manager 2.x pool types translate into View Manager 3.x pool types
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011582&sliceId=1&docTypeID=DT_KB_1_1
SonicWALL SSL-VPN Format String Vulnerability
http://secunia.com/advisories/35332/
ViciDial Asterisk GUI Client SQL Injection Vulnerabilities
http://secunia.com/advisories/35325/
Red Hat update for kernel
http://secunia.com/advisories/35324/
Microsoft Windows "SystemParametersInfo()" Denial of Service
http://secunia.com/advisories/35323/
Debian update for cups and cupsys
http://secunia.com/advisories/35322/
Fedora update for ocsinventory
http://secunia.com/advisories/35313/
SonicWALL SSL-VPN Format String Vulnerability
http://secunia.com/advisories/35297/
Fedora update for pidgin
http://secunia.com/advisories/35294/
Fedora update for mingw32-opensc
http://secunia.com/advisories/35293/
osCommerce Luottokunta Module Security Bypass Vulnerability
http://secunia.com/advisories/35291/
WebEyes Guest Book "mesajid" SQL Injection Vulnerability
http://secunia.com/advisories/35290/
PropertyMax Pro Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/35289/
Webott.com WebCal "event_id" SQL Injection Vulnerability
http://secunia.com/advisories/35286/
Joomla! Script Insertion and Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/35278/
Linux Kernel e1000 Driver Denial of Service Vulnerability
http://secunia.com/advisories/35265/
Debian update for libapache-mod-jk
http://secunia.com/advisories/29283/
NTTコムのVPN経由でウイルス感染
200台の監視端末すべてが感染,ユーザー企業にも被害
http://itpro.nikkeibp.co.jp/article/COLUMN/20090526/330659/
Apple Terminal Integer Overflow in Window Resizing Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022322.html
CUPS IPP_TAG_UNSUPPORTED Structure Initialization Bug Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Jun/1022321.html
IBM DB2 3rd-Party JDBC Driver IPv6 Bug Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Jun/1022320.html
Yet another embarassing data leakage
http://www.zone-h.org/news/id/4712
IBM DB2 LDAP Authentication Bypass and IPv6 DoS Vulnerabilities
http://www.vupen.com/english/advisories/2009/1477
strongSwan IKE_SA_INIT and IKE_AUTH Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/1476
SafeNet SoftRemote IKE Service Remote Stack Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/1472
ACDSee Products TIFF and Font Parsing Buffer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/1471
Apple iTunes Multiple Protocol Handler Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/1470
Apple QuickTime File Processing Remote Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2009/1469
Xvid Decoder Functions Multiple Memory Corruption Vulnerabilities
http://www.vupen.com/english/advisories/2009/1468
SonicWALL Global Security Client Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2009/1467
SonicWALL Global VPN Client Local Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2009/1466
SonicWALL SonicOS Logfile Parsing Format String Vulnerability
http://www.vupen.com/english/advisories/2009/1465
IBM WebSphere Application Server Information Disclosure Vulnerabilities
http://www.vupen.com/english/advisories/2009/1464
IBM WebSphere MQ Data Handling Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/1463
Sun Security Update Fixes Libpng Memory Corruption Vulnerabilities
http://www.vupen.com/english/advisories/2009/1462
Apple QuickTime Image Description Atom Sign Extension PoC
http://www.milw0rm.com/exploits/8862
Apple iTunes 8.1.1 (ITMS) Multiple Protocol Handler BOF Exploit (meta)
http://www.milw0rm.com/exploits/8861
Atomix Virtual Dj Pro 6.0 Stack Buffer Overflow PoC (SEH)
http://www.milw0rm.com/exploits/8863
Joomla! and Mambo 'com_mosres' Component Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/35202
Omilen Photo Gallery Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/35201
Drupal Quiz Module HTML Injection Vulnerability
http://www.securityfocus.com/bid/35199
Drupal Webform Module HTML Injection Vulnerability
http://www.securityfocus.com/bid/35197
Linux Kernel 'drivers/char/agp/generic.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34673
Linux Kernel CIFS Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34453
Linux Kernel 'kill_something_info()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/34558
Linux Kernel nfsd 'CAP_MKNOD' Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/34205
ModSecurity Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34096
Sun Solaris UFS Filesystem 'acl(2)' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/31250
Dream Windows Max CMS 'admin_manager.asp' SQL Injection Vulnerability
http://www.securityfocus.com/bid/34933
Mozilla Firefox 'keygen' HTML Tag Denial of Service Vulnerability
http://www.securityfocus.com/bid/35132
Pidgin 'msn_slplink_process_msg()' Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/29956
Seminar for Joomla! 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35192
BaoFeng Storm ActiveX Control 'SetAttributeValue()' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34869
libsndfile Audio Data Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/35126
Pidgin Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35067
Luottokunta Payment Security Bypass Vulnerability
http://www.securityfocus.com/bid/35191
Podcast Generator 'core/admin/delete.php' Arbitrary File Deletion Vulnerability
http://www.securityfocus.com/bid/34317
Joomla! Prior to 1.5.11 Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/35189
Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
http://www.securityfocus.com/bid/35196
CUPS PDF File Multiple Heap Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35195
CUPS Scheduler Directory Services Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35194
CUPS 'cups/ipp.c' NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35169
OCS Inventory NG Existing/Non-Existing Username Enumeration Weakness
http://www.securityfocus.com/bid/35023
Apache Tomcat Java AJP Connector Invalid Header Denial of Service Vulnerability
http://www.securityfocus.com/bid/35193
Linux Kernel 'e1000/e1000_main.c' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35185
OpenSC 'pkcs11-tool' Inseure Key Generation Vulnerability
http://www.securityfocus.com/bid/34884
Microsoft DirectX DirectShow QuickTime Video Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35139
Apple iTunes Multiple URI Handler Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35157
Apple QuickTime Image Description Atom Sign Extension Vulnerability
http://www.securityfocus.com/bid/35166
Unclassified NewsBoard Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/35183
Microsoft Windows Desktop Wall Paper System Parameter Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35120
0 件のコメント:
コメントを投稿