2009年12月11日金曜日

11日 金曜日、仏滅

Kernel release: 2.6.32.1-rc1
http://www.linux.org/news/2009/12/11/0001.html

JVNDB-2009-002079 Linux kernel の execve 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002079.html

JVNDB-2009-001974 Linux kernel の personality サブシステムにおける NULL ポインタ参照の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001974.html

JVNDB-2009-001876 Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001876.html

JVNDB-2009-001294 Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001294.html

JVNDB-2008-002277 Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002277.html

JVNDB-2008-002274 Linux Kernel の __scm_destroy 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002274.html

JVNDB-2009-002316 Adobe Shockwave Player の SwDir.dll ActiveX における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002316.html

JVNDB-2009-002315 Adobe Shockwave Player の Shockwave コンテンツ処理における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002315.html

JVNDB-2009-002314 Adobe Shockwave Player の Shockwave コンテンツ処理における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002314.html

JVNDB-2009-002313 Adobe Shockwave Player の Shockwave コンテンツ処理における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002313.html

JVNDB-2009-002312 Adobe Shockwave Player の Web ページ処理における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002312.html

Sun Ray Server Code Execution and Weak Encryption Vulnerabilities
http://www.vupen.com/english/advisories/2009/3477

Randomizer Module for Drupal Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/3476

Invision Power Board SQL Injection and Local Inclusion Vulnerabilities
http://www.vupen.com/english/advisories/2009/3475

Zen Cart "url" Processing Remote File Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/3474

HP OpenView Network Node Manager Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2009/3473

GNU Coreutils Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/37256

Joomla! 'com_job' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37254

NTP 'ntpq' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34481

Django URL Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35859

Django 'EmailField' and 'URLField' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36655

Amarok 'audible.cpp' Audible File Multiple Integer Overflow and Memory Allocation Vulnerabilities
http://www.securityfocus.com/bid/33210

Dag Wieers Dstat 'sys.path' Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37131

Blender 'BPY_interface.c' Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/31931

Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363

Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573

Irssi 'WALLOPS' Message Off By One Heap Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35399

MIT Kerberos 'asn1_decode_generaltime()' Uninitialized Pointer Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34409

Sun Ray Server Firmware Insecure Key Generation Vulnerability
http://www.securityfocus.com/bid/37285




+ Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Involving Handshake Renegotiation Affects Network Security Services (NSS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273350-1

+ Security Vulnerabilities in Solaris AnswerBook2 Documentation
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200305-1

+ ProFTPD 1.3.2c released
http://www.proftpd.org/docs/NEWS-1.3.2c
http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c

+ ProFTPD: fix for the SSL/TLS renegotiation vulnerability
http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c

+ Linux Kernel Ext4 "EXT4_IOC_MOVE_EXT" Privilege Escalation
http://secunia.com/advisories/37658/
http://www.vupen.com/english/advisories/2009/3468
http://www.securityfocus.com/bid/37277

+ Red Hat acpid '/var/log/acpid' Log File Permissions Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37249

BIND 9.6.2b1 is now available.
http://ftp.isc.org/isc/bind9/9.6.2b1/9.6.2b1

[ProFTPD-announce] ProFTPD 1.3.2c released
ftp://ftp.proftpd.org/distrib/source

[ProFTPD-announce] ProFTPD 1.3.3rc3 released
ftp://ftp.proftpd.org/distrib/source

Security Vulnerability in the Sun Ray Server Software Authentication Manager May Allow a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267548-1

A Security Vulnerability in the Generation of Encryption Keys for Sun Ray Firmware
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270549-1

HPSBPI02472 SSRT090196 rev.2 - Certain HP Color LaserJet Printers, Remote Unauthorized Access to Data, Denial of Service
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01886100&docLocale=en&admit=109447626+1260493655365+28353475

HPSBMA02425 SSRT080091 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01728300

HPSBMA02424 SSRT080125 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01723303

HPSBMA02400 SSRT080144 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01646081

Postfix 2.7 Snapshot 20091209
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20091209.HISTORY

ProFTPD 1.3.3rc3 released
http://www.proftpd.org/docs/NEWS-1.3.3rc3
http://www.proftpd.org/docs/RELEASE_NOTES-1.3.3rc3

VMware ESX and ESXi 3.5 Comparison
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1006543&sliceId=1&docTypeID=DT_KB_1_1

Timekeeping best practices for Linux guests
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1006427&sliceId=1&docTypeID=DT_KB_1_1

Mandriva : kernel
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31176

Slackware Linux : ntp
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31178

Ubuntu Security Notice : Linux kernel vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31177

Acunetix Ltd. : Zen Cart local file disclosure vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31183

Core Security Technologies : Multiple XSS and Injection Vulnerabilities in TestLink Test Management and Execution System
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31195

悪用されるクラウドサービス、ボットネットの司令塔に
米CAが報告、「Amazon EC2」で稼働するサーバーがボットと通信
http://itpro.nikkeibp.co.jp/article/NEWS/20091210/341938/?ST=security

JVNDB-2009-002311 Sun Solaris の Trusted Extensions におけるワークステーションにアクセスされる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002311.html

JVNDB-2009-002310 Pidgin および Adium の OSCAR プロトコルプラグインにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002310.html

JVNDB-2009-002309 ProFTPD の mod_tls モジュールにおける client-hostname 制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002309.html

JVNDB-2009-002308 Snort におけるサービス運用妨害 (DOS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002308.html

[ MDVSA-2009:331 ] kdegraphics
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00185.html

[ MDVSA-2009:330 ] kdelibs
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00186.html

[security bulletin] HPSBUX02480 SSRT090253 rev.1 - HP-UX Running VRTSweb, Remote Execution o
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00180.html

[security bulletin] HPSBMA02477 SSRT090177 rev.3 - HP OpenView Network Node Manager (OV NNM), Re
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00184.html

[security bulletin] HPSBMA02483 SSRT090257 rev.1 - HP OpenView Network Node Manager (OV NNM), Re
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00183.html

[ MDVSA-2009:329 ] kernel
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00182.html

[USN-869-1] Linux kernel vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00181.html

CORE-2009-1013: Multiple XSS and Injection Vulnerabilities in TestLink Test Management and E
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00179.html

iDefense Security Advisory 12.08.09: Microsoft Windows Indeo32 Codec Parsing Heap Corruption Vulnera
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00178.html

iDefense Security Advisory 12.08.09: Microsoft WordPad Word97 Converter Integer Overflow Vulnerabili
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00176.html

iDefense Security Advisory 12.08.09: Microsoft Internet Explorer HTML Layout Engine Uninitialized Me
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00175.html

Facebook Password Reset Confirmation. Customer Support. (Malware)
http://isc.sans.org/diary.html?storyid=7729

Invision Power Board Script Insertion and SQL Injection Vulnerabilities
http://secunia.com/advisories/37680/

Red Hat update for flash-plugin
http://secunia.com/advisories/37678/

Joomla JPhoto Component "id" SQL Injection Vulnerability
http://secunia.com/advisories/37676/

Slackware update for ntp
http://secunia.com/advisories/37674/

Fedora update for rubygem-actionpack
http://secunia.com/advisories/37670/

Fedora update for nss-util
http://secunia.com/advisories/37669/

Fedora update for httpd
http://secunia.com/advisories/37668/

HP OpenView Network Node Manager Multiple Vulnerabilities
http://secunia.com/advisories/37665/

Ruby "rb_str_justify()" Buffer Overflow Vulnerability
http://secunia.com/advisories/37660/

Open MPI libtool Search Path Privilege Escalation Security Issue
http://secunia.com/advisories/37659/

Linux Kernel Ext4 "EXT4_IOC_MOVE_EXT" Privilege Escalation
http://secunia.com/advisories/37658/

Symantec Products Veritas VRTSweb Vulnerability
http://secunia.com/advisories/37637/

Real Estate Portal SQL Injection Vulnerabilities
http://secunia.com/advisories/37633/

Symantec Products Veritas VRTSweb Vulnerability
http://secunia.com/advisories/37631/

Zen Cart "url" Local File Inclusion Vulnerability
http://secunia.com/advisories/37630/

Red Hat update for flash-plugin
http://secunia.com/advisories/37616/

Invision Power Board Multiple Vulnerabilities
http://secunia.com/advisories/37598/

Huawei MT882 Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/37568/

Ubuntu update for kernel
http://secunia.com/advisories/37519/

Kiwi Syslog Server Web Access Weakness and Security Issue
http://secunia.com/advisories/37465/

HP OpenView Network Node Manager Multiple Flaws Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Dec/1023317.html

JBoss Enterprise Application Platform Discloses JMX Password to Local Users
http://securitytracker.com/alerts/2009/Dec/1023316.html

JBoss Enterprise Application Platform Input Validation Holes in the JMX Console and Web Console Permits Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2009/Dec/1023315.html

Metasploit 3.3.2 Released!
http://www.metasploit.com/redmine/projects/framework/wiki/Release_Notes_332

Ruby "rb_str_justify()" Function Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/3471

PHPIDS "Unserialize()" Remote PHP Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/3470

Piwik "unserialize()" Remote PHP Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/3469

Linux Kernel "EXT4_IOC_MOVE_EXT" Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2009/3468

Symantec Products Veritas VRTSweb Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/3467

SAP GUI for Windows sapirrfc.dll Activex Overflow Exploit
http://www.exploit-db.com/exploits/10375

Easy RM to MP3 Converter 2.7.3.700
http://www.exploit-db.com/exploits/10374

Xenorate 2.50(.xpl) universal Local Buffer Overflow Exploit (SEH) (meta)
http://www.exploit-db.com/exploits/10373

Xenorate 2.50(.xpl) universal Local Buffer Overflow Exploit (SEH)
http://www.exploit-db.com/exploits/10371

OpenAFS Error Codes Remote Denial of Service Vulnerabiliy
http://www.securityfocus.com/bid/34404

Dia 'PySys_SetArgv' Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/33448

OpenAFS Unix Cache Manager Heap-Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34407

GNU GRUB Local Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/36968

Active! Mail Cross Site Scripting and Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/37252

Red Hat acpid '/var/log/acpid' Log File Permissions Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37249

Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability
http://www.securityfocus.com/bid/30131

Eggdrop 'ctcpbuf' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34985

PostgreSQL Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36314

Kingsoft Internet Security Archive Parsing Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/37247

CUPS PDF File Multiple Heap Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35195

Barracuda IM Firewall 'smtp_test.cgi' Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/37248

WebKit SVGList Objects Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34924

WebKit CSS 'Attr' Function Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35318

WebKit JavaScript Garbage Collector Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35309

WebKit DOM Event Handler Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35271

WebKit Numeric Character References Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35607

WebKit SVG Animation Elements User After Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35334

MIT Kerberos SPNEGO and ASN.1 Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/34408

MIT Kerberos 'NegTokenInit' Token Handling Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34257

ClamAV Prior to 0.95.1 Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34446

ClamAV RAR File Scan Evasion Vulnerability
http://www.securityfocus.com/bid/34344

Xpdf JBIG2 Processing Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34568

ClamAV Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34357

CUPS 'kerberos' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36958

CUPS File Descriptors Handling Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37048

CUPS '_cupsImageReadTIFF()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34571

CUPS 'cups/ipp.c' NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35169

HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/37261

Linux Kernel Ext4 'move extents' ioctl Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37277

Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703

KDE KSSL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36229

Multiple Vendor Browser 'HTMLSelectElement' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35446

Multiple BSD Distributions 'gdtoa/misc.c' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35510

Sun Ray Server Authentication Manager Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37284

Moodle Multiple Vulnerabilities
http://www.securityfocus.com/bid/37244

Adobe Flash Player and AIR JPEG File Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37266

Adobe Flash Player and AIR (CVE-2009-3797) Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/37273

Adobe Flash Player and AIR Data Injection Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37270

Adobe Flash Player and AIR Multiple Unspecified Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/37269

Adobe Flash Player ActiveX Control Information Disclosure Vulnerability
http://www.securityfocus.com/bid/37272

Adobe Flash Player and AIR 'exception_count' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/37267

Adobe Flash Player and AIR (CVE-2009-3798) Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/37275

HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
http://www.securityfocus.com/bid/37046

Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37012

Novell eDirectory 'NDS Verb 0x1' Request Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37184

Linux Kernel AppleTalk Driver IP Over DDP Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36379

Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36827

Linux Kernel 'unix_stream_connect()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36723

Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36901

Linux Kernel 'nfs4_proc_lock()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36936

Linux Kernel KVM 'kvm_dev_ioctl_get_supported_cpuid()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/36803

Linux Kernel 'ip_frag_reasm() ' Null Pointer Deference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37231

Linux Kernel KVM Large SMP Instruction Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37130

Motorola Timbuktu Pro 'PlughNTCommand' Named Pipe Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35496

NTP mode 7 MODE_PRIVATE Packet Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37255

Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935

Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36260

Apache mod_proxy_ftp Remote Command Injection Vulnerability
http://www.securityfocus.com/bid/36254

Sun Solaris AnswerBook2 Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/12746

GNU Libtool 'libltdl' Library Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37128

Ruby on Rails 'strip_tags()' Non-Printable Character Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37142

Ruby on Rails 'redirect_to()' HTTP Header Injection Vulnerability
http://www.securityfocus.com/bid/32359

Ruby on Rails Form Helpers Unicode String Handling Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36278

IETF and W3C XML Digital Signature Specification HMAC Truncation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35671

Sun Java Runtime Environment XML Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/35958

VLC Media Player RTSP Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37236

Achievo Scheduler Category HTML Injection Vulnerability
http://www.securityfocus.com/bid/37220

Achievo Document Types Section Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37219

SAP Kernel 'sapstartsrv' Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37286

Sun Ray Server Firmware Insecure Key Generation Vulnerability
http://www.securityfocus.com/bid/37285

Kiwi Syslog Server Information Disclosure Weakness and Vulnerability
http://www.securityfocus.com/bid/37282

Joomla! JS Jobs Component Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37281

Joomla! Mamboleto Component 'mamboleto.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/37280

Joomla! 'com_jphoto' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37279

JBoss Enterprise Application Platform Multiple Vulnerabilities
http://www.securityfocus.com/bid/37276

0 件のコメント:

コメントを投稿