迷惑/詐欺メール検索エンジン TMASE 6.0(ビルド 1038) 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1317
JVNDB-2009-002226 Microsoft Windows Media Player におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002226.html
JVNDB-2009-002225 Microsoft Windows Media Runtime における圧縮されたオーディオファイル処理に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002225.html
JVNDB-2009-002224 Microsoft Windows Media Runtime における ASF ファイル処理に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002224.html
JVNDB-2009-002223 Microsoft Windows における SMB Multi-Protocol Negotiate Request パケット処理に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002223.html
JVNDB-2009-002222 Microsoft Windows における SMBv2 パケット処理に関するサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002222.html
JVNDB-2008-002285 PHP の imageRotate 関数における任意のメモリ内容を読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002285.html
JVNDB-2008-002260 PHP の ext/mbstring/libmbfl/filters/mbfilter_htmlent.c における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002260.html
JVNDB-2008-002259 PHP の ZipArchive::extractTo 関数における ZIP ファイルの処理に関するディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002259.html
JVNDB-2008-002258 PHP における safe_mode に関する任意のファイルを書込まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002258.html
JVNDB-2008-002257 PHP におけるグローバル変数の初期化処理に関する safe_mode の制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002257.html
JVNDB-2008-002168 PHP の FastCGI モジュールにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002168.html
JVNDB-2008-002167 PHP の chdir 関数および ftok 関数におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002167.html
JVNDB-2008-002166 PHP の posix_access 関数におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002166.html
JVNDB-2008-001815 PCRE ライブラリにおける正規表現の処理に関するバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001815.html
JVNDB-2008-001734 PHP の memnstr 関数におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001734.html
JVNDB-2008-001733 PHP の imageloadfont 関数におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001733.html
JVNDB-2008-001660 Apache の UTF-7 でエンコードされた URL 処理におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001660.html
JVNDB-2008-001610 Apache の mod_proxy_ftp モジュールにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001610.html
JVNDB-2008-001570 PHP の php_imap.c におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001570.html
JVNDB-2008-001453 Apache HTTP Server の ap_proxy_http_process_response() 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001453.html
JVNDB-2008-001335 PHP の init_request_info() 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001335.html
JVNDB-2007-001022 Apache の mod_autoindex.c における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001022.html
JVNDB-2006-000587 OpenSSH の sshd における CPU リソース大量消費の脆弱性
http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000587.html
Reports of a successful exploit of the SSL Renegotiation Vulnerability?
http://isc.sans.org/diary.html?storyid=7600
+ Linux Kernel 'megaraid_sas' Driver Insecure File Permission Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37019
+ PHP 5.2.11/5.3.0 Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30894
- IIS-SA-11/13/2009: IIS 5.0 FTP Server / Remote SYSTEM exploit
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30895
マイクロソフト セキュリティ アドバイザリ (977544): SMB の脆弱性により、サービス拒否が起こる
http://www.microsoft.com/japan/technet/security/advisory/977544.mspx
Kernel release: 2.6.32-rc7
http://www.linux.org/news/2009/11/14/0001.html
http://www.perl.org/ - redesign
http://use.perl.org/articles/09/11/13/0917227.shtml
Postfix 2.7 Snapshot 20091115
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20091115.HISTORY
Microsoft Security Advisory (977544): Vulnerability in SMB Could Allow Denial of Service
http://www.microsoft.com/technet/security/advisory/977544.mspx
VMware ESX and ESXi 3.5 Comparison
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1006543&sliceId=1&docTypeID=DT_KB_1_1
Enhanced VMotion Compatibility (EVC) processor support
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1003212&sliceId=1&docTypeID=DT_KB_1_1
Restarting the Management agents on an ESX or ESXi Server
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1003490&sliceId=1&docTypeID=DT_KB_1_1
Independent Researcher : IIS 5.0 FTP Server / Remote SYSTEM exploit
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30895
rPSA : httpd mod_ssl
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30893
SecurityReason.com : PHP 5.2.11/5.3.0 Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30894
Independent Researcher : Novell eDirectory 8.8 SP5 Denial of Service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30896
Independent Researcher : Yahoo Messenger 9 ActiveX DoS (Null Pointer) Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30897
Red Hat : Critical: java-1.6.0-ibm security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30887
rPSA : httpd mod_ssl
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30889
rPSA : util-linux util-linux-extras
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30890
rPSA : apr-util
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30891
rPSA : samba samba-client samba-server samba-swat
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30892
Secunia : Secunia Research: Gimp BMP Image Parsing Integer Overflow Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30888
SuSE : Linux Kernel
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30886
[USN-859-1] OpenJDK vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00104.html
[ MDVSA-2009:296 ] gimp
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00103.html
XM Easy Personal FTP Server APPE and DELE Command Remote Denial of Service Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00099.html
rPSA-2009-0142-2 httpd mod_ssl
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00102.html
rPSA-2009-0145-1 samba samba-client samba-server samba-swat
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00101.html
rPSA-2009-0144-1 apr-util
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00100.html
rPSA-2009-0143-1 util-linux util-linux-extras
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00098.html
rPSA-2009-0142-1 httpd mod_ssl
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00097.html
Microsoft advisory for Windows 7 / Windows Server 2008 R2 Remote SMB DoS Exploit released
http://isc.sans.org/diary.html?storyid=7597
TLS & SSLv3 renegotiation vulnerability explained
http://isc.sans.org/diary.html?storyid=7582
http://www.g-sec.lu/practicaltls.pdf
Flash Origin Policy Attack
http://isc.sans.org/diary.html?storyid=7585
Conficker patch via email?
http://isc.sans.org/diary.html?storyid=7591
IBM WebSphere Application Server Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37379/
libexif "exif_entry_fix()" Buffer Overflow Vulnerability
http://secunia.com/advisories/37378/
Panda Products Insecure Default Directory Permissions
http://secunia.com/advisories/37373/
SUSE update for kernel
http://secunia.com/advisories/37371/
Fedora update for texlive
http://secunia.com/advisories/37367/
rPath update for apr-util
http://secunia.com/advisories/37365/
Red Hat update for java-1.6.0-ibm
http://secunia.com/advisories/37361/
Google Chrome Cross-Origin Resource Sharing Security Bypass
http://secunia.com/advisories/37358/
rPath update for samba
http://secunia.com/advisories/37356/
Ubuntu update for openldap
http://secunia.com/advisories/37355/
phpMyFAQ Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37354/
Microsoft Windows SMB Response Denial of Service Vulnerability
http://secunia.com/advisories/37347/
Linksys WAP4400N Association Request Denial of Service
http://secunia.com/advisories/37345/
ngIRCd SSL/TLS Denial of Service Vulnerabilities
http://secunia.com/advisories/37343/
Piwigo Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37336/
WordPress File Upload and Script Insertion
http://secunia.com/advisories/37332/
UseBB BBCode Parsing Denial of Service
http://secunia.com/advisories/37328/
FrontAccounting Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/37327/
MatrixSSL TLS Session Renegotiation Plaintext Injection Vulnerability
http://secunia.com/advisories/37323/
msmtp SSL Certificate NULL Character Processing Vulnerability
http://secunia.com/advisories/37321/
mpop SSL Certificate NULL Character Processing Vulnerability
http://secunia.com/advisories/37312/
IBM WebSphere Application Server Input Validation Flaw in Administrative Console Permits Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2009/Nov/1023181.html
GNU Image Manipulation Program (GIMP) Integer Overflow in Processing BMP Images Lets Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Nov/1023180.html
Microsoft Office Excel Code Execution Vulnerabilities
http://www.securiteam.com/windowsntfocus/6K00B0UQ0K.html
Microsoft Windows License Logging Service Heap Corruption Vulnerability
http://www.securiteam.com/windowsntfocus/6M00D0UQ0W.html
Atheros Driver Reserved Frame DoS Vulnerability
http://www.securiteam.com/securitynews/6N00E0UQ0W.html
McAfee Security Manager Authentication Bypass and Session Hijacking Vulnerability
http://www.securiteam.com/securitynews/6L00C0UQ0I.html
AIRPORT MADNESS: SECURITY OR INSANITY?
http://www.zone-h.org/news/id/4730
Libexif "exif_entry_fix()" Tag Format Conversion Heap Overflow Issue
http://www.vupen.com/english/advisories/2009/3243
Mandos Client Configuration Files Password Disclosure Weakness
http://www.vupen.com/english/advisories/2009/3242
phpMyFAQ Search Page Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/3241
ngIRCd SSL/TLS Data Processing Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/3240
Linksys WAP4400N Remote Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/3239
WordPress Arbitrary File Upload and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/3234
Google Chrome Cross-Origin Resource Sharing Security Issue
http://www.vupen.com/english/advisories/2009/3233
Microsoft Windows 'KeAccumulateTicks()' SMB Packet Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36989
Mozilla Firefox CVE-2009-3379 Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36875
Microsoft Windows License Logging Server Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36921
libexif 'exif-entry.c' Tag Format Conversion Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37022
Sun Java SE November 2009 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36881
ngIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/37021
phpMyFAQ Search Page Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37020
Linksys WAP4400N Association Request Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37017
Linux Kernel 'megaraid_sas' Driver Insecure File Permission Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37019
Microsoft Windows Kernel GDI Data Validation Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36941
Microsoft Windows Kernel NULL Pointer Dereference Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36939
Microsoft Windows Embedded OpenType Font Engine Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36029
XM Easy Personal FTP Server 'APPE' and 'DELE' Commands Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/37016
GIMP BMP Image Parsing Integer Overflow Vulnerability
http://www.securityfocus.com/bid/37006
Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573
Samba Format String And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35472
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
util-linux-ng 'login' Remote Log Injection Weakness
http://www.securityfocus.com/bid/28983
BibTeX '.bib' File Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34332
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
Apache 'Options' and 'AllowOverride' Directives Security Bypass Vulnerability
http://www.securityfocus.com/bid/35115
Apache 'mod_proxy' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35565
Apache 'mod_deflate' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35623
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
WebKit Preflight Request Same-Origin Policy Bypass Vulnerability
http://www.securityfocus.com/bid/36997
WordPress Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37014
WordPress 'wp-admin/includes/file.php' Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37005
IBM WebSphere Application Server Administrative Console HTML Injection Vulnerability
http://www.securityfocus.com/bid/37015
0 件のコメント:
コメントを投稿