JVNDB-2009-002160 Cisco IOS の Cisco Unified Border Element 機能におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002160.html
JVNDB-2009-002159 Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002159.html
JVNDB-2009-002158 Cisco IOS の Firewall 認証プロキシ機能における認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002158.html
JVNDB-2009-002157 Cisco IOS における SIP 検査機能に関するサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002157.html
JVNDB-2009-002156 Cisco IOS における NTPv4 パケットの処理に関するサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002156.html
JVNDB-2009-001956 複数の Mozilla 製品 における任意の SSL サーバになりすまされる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001956.html
JVNDB-2009-001955 Mozilla NSS の正規表現の解析における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001955.html
JVNDB-2009-001296 IBM Lotus Domino のサーバ内 IMAP タスクにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001296.html
JVNDB-2004-000030 Apache HTTP Server の mod_digest モジュールにおける不完全な認証の脆弱性
http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000030.html
[Clamav-announce] announcing ClamAV 0.95.3
http://lurker.clamav.net/thread/20091028.204922.5b470633.en.html
More on the E2-Labs scam
http://www.zone-h.org/news/id/4717
Mozilla Firefox Download Manager World Writable File Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36852
Mozilla Firefox JavaScript Web-Workers Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36854
+ Security Vulnerability in Mozilla Thunderbird Related to SSL Certificates May Cause Arbitrary Code Execution
http://sunsolve.sun.com/search/document.do?assetkey=1-66-269468-1
+ [GSEC-47-2009] - Symantec generic PDF bypass
http://www.g-sec.lu/symantec-pdf-bypass.html
+ Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36827
Sun SPARC Enterprise M4000/5000/8000/9000 Servers With Patch 127127-11 May Experience Random Panics
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239647-1
FreeBSD 8.0-RC2 Available
http://lists.freebsd.org/pipermail/freebsd-stable/2009-October/052544.html
Debian : New expat packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30747
Independent Researcher : Hijacking Opera's Native Page using malicious RSS payloads
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30757
Secunia : Secunia Research: Mozilla Firefox Floating Point Memory Allocation Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30763
G-SEC : Symantec generic PDF detection bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30754
G-SEC : F-SECURE - Generic PDF detection bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30755
G-SEC : McAfee generic PDF detection bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30756
Google Security Team : Invalid #PF Exception Code in VMware can result in Guest Privilege Escalation
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30752
Independent Researcher : Adobe Acrobat Reader up to 9.1.1 ONLY Linux integer overflow to heap overflow.
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30760
Mandriva : kernel
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30746
oCERT : KDE multiple issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30762
Protek Research Lab : {PRL} Rising Firewall 2009 Privilege Escalation
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30759
Red Hat : Moderate: samba security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30748
Red Hat : Moderate: samba security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30749
Red Hat : Critical: firefox security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30750
Red Hat : Critical: seamonkey security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30751
ShineShadow : Rising Multiple Products Local Privilege Escalation Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30758
VMware : VMware hosted products and ESX patches resolve two security issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30753
Aruba Networks : Malformed 802.11 Association Request frame causes Denial of Service condition on an Access Point
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30761
PHP168 v6.0 rc
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00259.html
[SECURITY] [DSA 1921-1] New expat packages fix denial of service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00270.html
Secunia Research: Mozilla Firefox Floating Point Memory Allocation Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00266.html
[G-SEC 49-2009] McAfee generic PDF detection bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00268.html
[G-SEC 48-2009] F-SECURE - Generic PDF detection bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00275.html
[G-SEC 47-2009] Symantec generic PDF detection bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00264.html
Mariposa Botnet C&C decryption plugin for wireshark
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00262.html
[oCERT-2009-015] KDE multiple issues
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00261.html
[ MDVSA-2009:289 ] kernel
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00260.html
VMSA-2009-0015 VMware hosted products and ESX patches resolve two security issues
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00273.html
Invalid #PF Exception Code in VMware can result in Guest Privilege Escalation
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00274.html
PUBLIC ADVISORY: 10.28.09: Mozilla Firefox GIF Color Map Parsing Buffer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=830
Cyber Security Awareness Month - Day 28 - ntp (123/udp)
http://isc.sans.org/diary.html?storyid=7478
Aruba Access Point 802.11 Association Request Processing Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Oct/1023100.html
Mozilla Firefox Proxy Auto-configuration regexp Parsing Flaw Lets Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Oct/1023099.html
Mozilla Firefox Download Files Containing RTL Override Characters May Be Used to Spoof the Download Filename
http://securitytracker.com/alerts/2009/Oct/1023098.html
Mozilla Firefox Lets Remote Users Bypass Cross-Domain Restrictions
http://securitytracker.com/alerts/2009/Oct/1023097.html
SEIL Routers IPv6 Denial of Service Vulnerability
http://secunia.com/advisories/37188/
Red Hat update for samba
http://secunia.com/advisories/37187/
VMware Products Directory Traversal File Disclosure Vulnerability
http://secunia.com/advisories/37186/
Bftpd Denial of Service Vulnerability
http://secunia.com/advisories/37185/
Sun Solaris Trusted Extensions Policy Security Bypass
http://secunia.com/advisories/37184/
Opera Multiple Vulnerabilities
http://secunia.com/advisories/37182/
Rising Products Insecure Default Directory Permissions
http://secunia.com/advisories/37181/
McAfee Products PDF and TAR Handling Security Bypass
http://secunia.com/advisories/37179/
Red Hat update for samba
http://secunia.com/advisories/37177/
Wireshark Denial of Service Vulnerabilities
http://secunia.com/advisories/37175/
Mozilla SeaMonkey Multiple Vulnerabilities
http://secunia.com/advisories/37173/
VMware Products Guest Privilege Escalation Vulnerability
http://secunia.com/advisories/37172/
Right Hemisphere Products U3D Parsing Array Indexing Vulnerability
http://secunia.com/advisories/37165/
SEIL Routers Denial of Service and Buffer Overflow Vulnerabilities
http://secunia.com/advisories/37154/
Red Hat update for seamonkey
http://secunia.com/advisories/37153/
Red Hat update for firefox
http://secunia.com/advisories/37148/
AOL AIM SIPFoundry sipXtapi Buffer Overflow Vulnerabilities
http://secunia.com/advisories/37143/
Mozilla Firefox Multiple Vulnerabilities
http://secunia.com/advisories/36711/
myPhile "myuser" Parameter Authentication Bypass Vulnerability
http://www.vupen.com/english/advisories/2009/3077
Collabtive Arbitrary File and Folder Deletion Vulnerability
http://www.vupen.com/english/advisories/2009/3076
Right Hemisphere Deep Exploration U3D Memory Corruption Issue
http://www.vupen.com/english/advisories/2009/3075
jCore User Permissions Handling Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2009/3074
Opera Browser Remote Code Execution and Spoofing Vulnerabilities
http://www.vupen.com/english/advisories/2009/3073
Rising Products Multiple Local Privilege Escalation Vulnerabilities
http://www.vupen.com/english/advisories/2009/3072
Wowd "index.html" Multiple Parameter Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/3071
Sun Solaris Trusted Extensions Policy Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/3070
McAfee Products TAR and PDF Handling Security Bypass Issues
http://www.vupen.com/english/advisories/2009/3069
Drupal Insert Node Module HTML Injection Vulnerability
http://www.securityfocus.com/bid/36861
Drupal LDAP Integration Cross Site Scripting and Authentication Bypass Vulnerabilities
http://www.securityfocus.com/bid/36860
OpenBSD 'getsockopt(2)' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36859
Microsoft GDI+ TIFF File Processing 'BitsPerSample' Tag Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36646
Microsoft GDI+ CCITT G4 TIFF File Processing Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36647
Microsoft GDI+ .NET Framework Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36648
Microsoft GDI+ PNG File Processing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36645
Microsoft GDI+ PNG File Integer Overflow Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36649
Microsoft GDI+ WMF File Processing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36619
Mozilla Firefox and SeaMonkey 'libpr0n' GIF Parser Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36855
Mozilla Firefox and SeaMonkey MFSA 2009-52 through -64 Multiple Vulnerabilities
http://www.securityfocus.com/bid/36843
Mozilla Firefox Form History Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36853
Mozilla FireFox Download Manager World Writable File Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36852
nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36839
Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36639
TFTgallery 'album' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36833
GD Graphics Library '_gdGetColors' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36712
Linux Kernel KVM 'kvm_dev_ioctl_get_supported_cpuid()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/36803
phpMyAdmin SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/36658
HTML-Parser Invalid HTML Entity Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36807
Basic Analysis and Security Engine Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/36830
python-markdown2 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36829
eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35850
PostgreSQL Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36314
FreeType Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34550
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
Poppler 'create_surface_from_thumbnail_data()' Integer Overflow Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36718
BackupPC 'ClientNameAlias()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/36575
Samba Format String And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35472
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573
Samba setuid 'mount.cifs' Verbose Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36572
Linux Kernel eCryptfs 'parse_tag_11()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35851
Linux Kernel KVM 'kvm_emulate_hypercall()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36512
Linux Kernel 'PER_CLEAR_ON_SETID' Incomplete Personality List Access Validation Weakness
http://www.securityfocus.com/bid/35647
Linux Kernel AppleTalk Driver IP Over DDP Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36379
Linux Kernel 'kernel/signal.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35929
Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36827
Linux Kernel 'net/ax25/af_ax25.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36635
Linux Kernel 64-bit Kernel Register Memory Leak Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36576
Multiple Rising Products Insecure Program File Permissions Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36836
Mozilla Firefox Floating Point Conversion Heap Overflow Vulnerability
http://www.securityfocus.com/bid/36851
Sun Java Runtime Environment XML Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/35958
OpenLDAP X.509 Certificate NULL Character Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36844
Opera Web Browser prior to 10.01 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36850
KDE Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/36845
Wireshark 1.2.2 and 1.0.9 Multiple Vulnerabilities
http://www.securityfocus.com/bid/36846
AOL AIM 'sipXtapi.dll' Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36849
McAfee Products TAR and PDF Files Scan Evasion Vulnerabilities
http://www.securityfocus.com/bid/36848
0 件のコメント:
コメントを投稿