JVNDB-2009-001859 Sun Solaris の Solaris Event Port API におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001859.html
JVNDB-2009-001858 Sun Solaris の Ultra-SPARC T2 crypto provider デバイスドライバにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001858.html
JVNDB-2009-001857 Sun Solaris の TCP/IP ネットワークスタックにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001857.html
JVNDB-2009-001856 Drupal における複数のクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001856.html
JVNDB-2009-001855 Drupal におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001855.html
JVNDB-2009-001854 Adobe Reader および Acrobat における脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001854.html
Building a "useful Perl 6"
http://use.perl.org/articles/09/08/07/046239.shtml
ウイルスバスター コーポレートエディション 7.3 Patch 6 リパック版公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1286
プレス発表:情報セキュリティのユーザー教育のための教則本「情報セキュリティ読本 三訂版」を出版 ~ 企業や大学、地域コミュニティでのユーザー教育に最適 ~
http://www.ipa.go.jp/about/press/20090807.html
Twitterを襲ったDoS攻撃,同時にFacebookなどにも
http://itpro.nikkeibp.co.jp/article/NEWS/20090807/335294/?ST=security
「日常の便利なシステムがプライバシを脅かす」,EFF報告
http://itpro.nikkeibp.co.jp/article/Research/20090807/335267/?ST=security
JVNTA09-218A Apple 製品における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNTA09-218A/index.html
Red Hat update for java-1.6.0-ibm
http://secunia.com/advisories/36185/
Sun VirtualBox Lets Local Users In a Virtual Machine Reboot the Host System
http://securitytracker.com/alerts/2009/Aug/1022677.html
Sun Java System Access Manager Flaw in CDCServlet Component May Let Remote Users Obtain Other User Data
http://securitytracker.com/alerts/2009/Aug/1022676.html
Sun Java System Access Manager Discloses Passwords to Local Users
http://securitytracker.com/alerts/2009/Aug/1022675.html
Mac OS X Multiple Image and File Processing Bugs Permit Remote Code Execution
http://securitytracker.com/alerts/2009/Aug/1022674.html
Mac OS X Networking Bugs Let Remote and Local Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022672.html
Mac OS X Kernel fcntl() Implementation Flaws Let Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2009/Aug/1022671.html
+ GCC 4.3.4 released
http://gcc.gnu.org/gcc-4.3/
+ HPSBUX02451 SSRT090137 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01835108-1
+ HPSBTU02453 SSRT091037 rev.1 - HP Tru64 UNIX BIND Server, Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01837667-1
+ Solution 258928: A Security Vulnerability May Allow Popup Windows to Appear Through the Solaris XScreenSaver Program on Xorg(1) Servers
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258928-1
http://secunia.com/advisories/36170/
http://www.vupen.com/english/advisories/2009/2174
+ Solution 263489: A Security Vulnerability in the Java Runtime Environment (JRE) With Parsing XML Data May Allow a Remote Client to Create a Denial of Service (DoS) Condition
http://sunsolve.sun.com/search/document.do?assetkey=1-66-263489-1
http://www.securityfocus.com/bid/35958
+ Linux Kernel 'posix-timers.c' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/35976
[announce] Apache Portable Runtime 1.3.8 and APR-Utility 1.3.9 Released
http://apr.apache.org/download.cgi
Solution 255968: Security Vulnerability in Sun Java System Access Manager May Provide Security Information to the Wrong Client
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255968-1
Solution 265268: Security Vulnerability in Sun VirtualBox May Lead to Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265268-1
Solution 261688: A Security Vulnerability in OpenSSO Enterprise and Sun Java System Access Manager May Cause Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1
Solution 256668: A Security Vulnerability in Sun Java System Access Manager May Disclose Confidential Information
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256668-1
+ Solution 264828: A Security Vulnerability in Solaris BIND named(1M) Due to Insufficient Input Validation of Dynamic Update Requests Can Lead to Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-264828-1
Solution 234461: Solaris Daylight Saving Time (DST) Update (Aug 2008, Oct 2008, Mar-Apr 2009, Jun 2009, Aug 2009)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-234461-1
HPSBNS02449 SSSRT090149 rev.1 - HP NonStop Servers with Telco CLIMs, Remote Execution of Arbitrary Code, Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01832118-1
HPSBOV02452 SSRT090161 rev.1 - HP TCP/IP Services for OpenVMS BIND Server Remote Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01835459-1
Postfix 2.7 Snapshot 20090805
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20090805.HISTORY
Postfix 2.7-20090806-nonprod non-production release
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20090806-nonprod.HISTORY
Document ID: 329405: Removing a disk from a Microsoft Disk Management disk group using the Storage Foundation for Windows (SFW) 5.1 Veritas Enterprise Administrator (VEA) on Microsoft Windows Server 2008 produces an unexpected error.
http://seer.entsupport.symantec.com/docs/329405.htm
RHSA-2009:1201-1: Important: java-1.6.0-openjdk security and bug fix update
http://rhn.redhat.com/errata/RHSA-2009-1201.html
Microsoftの8月定例アップデート予告,「緊急」5件,「重要」4件
http://itpro.nikkeibp.co.jp/article/NEWS/20090807/335266/?ST=security
TwitterにDoS攻撃,サイトがダウン
http://itpro.nikkeibp.co.jp/article/NEWS/20090807/335285/?ST=security
ブラウザーに広告を表示する「脅迫ウイルス」、Operaにも“対応”
「消したければ有料ダイヤルに連絡を」、IEとFirefoxが主なターゲット
http://itpro.nikkeibp.co.jp/article/NEWS/20090807/335283/?ST=security
iDefense Security Advisory 08.06.09: Microsoft Internet Explorer HTML TIME 'ondatasetcomplete' Use After Free Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00044.html
iDefense Security Advisory 08.06.09: Adobe Flash Player URL Parsing Heap Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00043.html
iDefense Security Advisory 08.06.09: IBM AIX libC _LIB_INIT_DBG Arbitrary File Creation Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00041.html
[ MDVSA-2009:195-1 ] apr
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00042.html
OpenCms (7.5.0) - Vulnerability: Cross-Site Scripting, Phishing Through Frames, Application
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00040.html
iDefense Security Advisory 08.06.09: Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00039.html
[CSS09-01] SlideShowPro Director File Disclosure Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00038.html
[ MDVSA-2009:195 ] apr
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00037.html
[SECURITY] [DSA 1851-1] New gst-plugins-bad0.10 packages fix arbitrary code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00034.html
[ MDVSA-2009:194 ] wireshark
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00036.html
fetchmail security announcement fetchmail-SA-2009-01 (CVE-2009-2666)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00033.html
[ MDVSA-2009:193 ] ruby
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00035.html
PUBLIC ADVISORY: 08.06.09: Adobe Flash Player URL Parsing Heap Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=816
PUBLIC ADVISORY: 08.04.09: Sun Java Runtime Environment (JRE) Pack200 Decompression Integer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=814
PUBLIC ADVISORY: 08.04.09: IBM AIX libC _LIB_INIT_DBG Arbitrary File Creation Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=815
PUBLIC ADVISORY: 07.28.09: Microsoft Internet Explorer HTML TIME 'ondatasetcomplete' Use After Free Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=817
Debian : New gst-plugins-bad0.10 packages fix arbitrary code execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30008
Mandriva : wireshark
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30004
Slackware Linux : slackware-security fetchmail
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30005
SuSE : Mozilla Firefox 3.0
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30007
Apple Product Security : Security Update 2009-003 / Mac OS X v10.5.8
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30006
Independent Researcher : BART Card Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30009
Independent Researcher : Multiple Flaws in Huawei SmartAX MT880 was: Multiple Flaws in Huawei D100
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30010
Twitter DOS
http://isc.sans.org/diary.html?storyid=6922
IBM AIX BIND Dynamic Update Denial of Service
http://secunia.com/advisories/36192/
Debian update for gst-plugins-bad
http://secunia.com/advisories/36183/
Drupal Webform Module Unspecified Script Insertion Vulnerability
http://secunia.com/advisories/36181/
Fetchmail SSL Certificate NULL Character Processing Vulnerability
http://secunia.com/advisories/36179/
Simple Search "terms" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36178/
Slackware update for fetchmail
http://secunia.com/advisories/36175/
Sun Java System Access Manager XML Processing Vulnerabilities
http://secunia.com/advisories/36173/
SmarterTrack Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36172/
Sun Solaris XScreenSaver PopUp Window Information Disclosure
http://secunia.com/advisories/36170/
Sun Java System Access Manager Debug File Information Disclosure
http://secunia.com/advisories/36169/
Sun Java System Access Manager CDCServlet Component Information Disclosure
http://secunia.com/advisories/36167/
In-portal "env" Local File Inclusion Vulnerability
http://secunia.com/advisories/36165/
AJ Auction Pro "txtkeyword" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36163/
I-Escorts Agency / Directory SQL Injection Vulnerabilities
http://secunia.com/advisories/36161/
Willscript.com Forum Script Script Insertion Vulnerability
http://secunia.com/advisories/36160/
OpenNews SQL and PHP Injection Vulnerabilities
http://secunia.com/advisories/36154/
signkorn Guestbook Cross-Site Scripting and Request Forgery
http://secunia.com/advisories/36151/
photokorn Multiple Vulnerabilities
http://secunia.com/advisories/36150/
AccessoriesMe PHP Affiliate Script Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36148/
SUSE update for MozillaFirefox
http://secunia.com/advisories/36145/
Silurus Classifieds Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36124/
MyBackup Information Disclosure and File Inclusion Vulnerabilities
http://secunia.com/advisories/36106/
SAP Business One License Manager Buffer Overflow
http://secunia.com/advisories/36103/
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/36096/
Sun VirtualBox Local Denial of Service
http://secunia.com/advisories/36080/
Omnistar Recruiter "job2" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31514/
Sun Products Debug Files Local Password Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/2177
Sun Java System Access Manager CDCServlet Component Vulnerability
http://www.vupen.com/english/advisories/2009/2176
Sun Products XML Docments Handling Memory Corruption Vulnerabilities
http://www.vupen.com/english/advisories/2009/2175
Sun Solaris XScreenSaver Popup Windows Disclosure Weakness
http://www.vupen.com/english/advisories/2009/2174
Sun VirtualBox Unspecified Local Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2173
Apple Mac OS X Code Execution and Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2009/2172
IBM AIX BIND Dynamic Update Message Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2171
SAP Business One License Manager Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2170
Portel 2008 "patron" Parameter Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2169
OpenNews "username" Parameter Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2168
Irokez CMS "id" Parameter Handling Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2167
Tenrok Command Injection and Information Disclosure Vulnerabilities
http://www.vupen.com/english/advisories/2009/2166
MyBackup Remote File Inclusion and Disclosure Vulnerabilities
http://www.vupen.com/english/advisories/2009/2165
In-Portal "env" Parameter Processing Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2009/2164
ShopMaker Remote SQL Injection and Local File Inclusion Vulnerabilities
http://www.vupen.com/english/advisories/2009/2163
Elgg "js" Parameter Processing Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2009/2162
MOC Designs PHP News Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2161
UltraPlayer Media Player Playlist Handling Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2160
Tuniac Player Playlist Processing Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2159
Fetchmail SSL Certificate Improper Subject Verification Vulnerability
http://www.vupen.com/english/advisories/2009/2155
Playlistmaker 1.5 (.M3U/M3L File) Local Stack Overflow Exploit (seh)
http://www.milw0rm.com/exploits/9379
A2 Media Player Pro 2.51 (.m3u /m3l) Universal Local BOF Exploit (SEH)
http://www.milw0rm.com/exploits/9377
JetAudio 7.1.9.4030 Universal Stack Overflow Exploit (SEH)
http://www.milw0rm.com/exploits/9375
jetAudio 7.1.9.4030 plus vx (.m3u) Universal BOF Exploit (SEH)http://www.milw0rm.com/exploits/9374
Sun Java Runtime Environment Proxy Mechanism Implementation Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/35943
Sun Java Runtime Environment JPEG Image Handling Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35942
Sun Java Runtime Environment Audio System Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35939
Sun Java Runtime Environment Unpack200 JAR Unpacking Utility Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35944
Sun Java SE Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35922
Sun Java Runtime Environment XML Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/35958
IETF and W3C XML Digital Signature Specification HMAC Truncation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35671
JNLPAppletLauncher Arbitrary File Creation Vulnerability
http://www.securityfocus.com/bid/35946
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34240
Microsoft Internet Explorer Deleted 'timeChildren' Object Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35831
Xpdf JBIG2 Processing Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34568
FreeBSD ATA Device Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35645
IBM AIX '_LIB_INIT_DBG' and '_LIB_INIT_DBG_FILE' File Creation Vulnerability
http://www.securityfocus.com/bid/35934
Adobe Flash Player and AIR URI Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35902
Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35949
Sun Java Runtime Environment ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34931
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
ZNC File Upload Directory Traversal Vulnerability
http://www.securityfocus.com/bid/35757
Mozilla NSS NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35888
OpenSC 'pkcs11-tool' Insecure Key Generation Vulnerability
http://www.securityfocus.com/bid/34884
OpenSC PKCS#11 Implementation Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/33922
"mod_auth_mysql" Package Multibyte Character Encoding SQL Injection Vulnerability
http://www.securityfocus.com/bid/33392
Nagios 'statuswml.cgi' Remote Arbitrary Shell Command Injection Vulnerability
http://www.securityfocus.com/bid/35464
Firebird 'op_connect_request' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35842
Fetchmail NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35951
libmodplug 's3m' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/30801
COWON America jetAudio M3U File Processing Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/26069
Mozilla Firefox and Thunderbird Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/35765
Mozilla Firefox Flash Player Unloading Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35767
Mozilla Firefox 'XPCCrossOriginWrapper' Multiple Cross Domain Scripting Vulnerabilities
http://www.securityfocus.com/bid/35773
Mozilla Firefox and Thunderbird RDF File Handling Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35775
Mozilla Firefox/Thunderbird JavaScript Engine Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/35776
Mozilla Firefox 'watch()' and ' __defineSetter__ ()' Functions Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35772
Mozilla Firefox and Thunderbird Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35769
Mozilla Firefox/Thunderbird Double Frame Construction Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/35770
Pango 'pango_glyph_string_set_size()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34870
Mozilla Firefox 'setTimeout()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35766
signkorn guestbook 'qc' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35965
Wireshark 1.2.0 Multiple Vulnerabilities
http://www.securityfocus.com/bid/35748
Ruby 'OCSP_basic_verify()' X.509 Certificate Verification Vulnerability
http://www.securityfocus.com/bid/33769
Mozilla Firefox 'nsViewManager.cpp' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35413
Multiple Browsers Web Proxy Redirect Handling Man In The Middle Vulnerability
http://www.securityfocus.com/bid/35412
Alkacon OpenCms Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/35979
Sun OpenSSO Enterprise XML Document Processing Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35977
Linux Kernel 'posix-timers.c' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/35976
TYPO3 'showUid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35975
Microsoft August 2009 Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/35974
photokorn SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/35966
0 件のコメント:
コメントを投稿