http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01943909
年末年始の営業に関するご案内
http://www.trendmicro.co.jp/support/news.asp?id=1331
Enhanced VMotion Compatibility (EVC) processor support
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1003212&sliceId=1&docTypeID=DT_KB_1_1
JVN#36207497 Active! mail 2003 における Cookie 漏えいの脆弱性
http://jvn.jp/jp/JVN36207497/index.html
JVN#85821104 Active! mail 2003 におけるセッション ID 漏えいの脆弱性
http://jvn.jp/jp/JVN85821104/index.html
JVN#49083120 Active! mail 2003 におけるクロスサイトスクリプティングの脆弱性
http://jvn.jp/jp/JVN49083120/index.html
JVN#79762947 EC-CUBE における情報漏えいの脆弱性
http://jvn.jp/jp/JVN79762947/index.html
JVNDB-2009-000077 Active! mail 2003 における Cookie 漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000077.html
JVNDB-2009-000076 Active! mail 2003 におけるセッション ID 漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000076.html
JVNDB-2009-000075 Active! mail 2003 におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000075.html
Mozilla Firefox JavaScript Bugs Let Remote Users Spoof Prompt Dialogs
http://securitytracker.com/alerts/2009/Dec/1023287.html
XML Security Library (xmlsec) LTDL Library Path Bug Lets Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2009/Dec/1023285.html
gAlan 0.2.1 Universal Buffer Overflow Exploit (meta)
http://www.exploit-db.com/exploits/10346
gAlan (.galan file) Universal Buffer Overflow Exploit
http://www.exploit-db.com/exploits/10345
Sun Java SE November 2009 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36881
Adobe Illustrator Encapsulated Postscript File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37192
Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36901
Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36827
Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36639
Linux Kernel AppleTalk Driver IP Over DDP Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36379
Linux Kernel 'kernel/signal.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35929
Linux Kernel KVM 'kvm_emulate_hypercall()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36512
Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/36824
Linux Kernel 'unix_stream_connect()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36723
Linux Kernel 'net/ax25/af_ax25.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36635
Linux Kernel Keyring 'refcount' Local Integer Underflow Vulnerability
http://www.securityfocus.com/bid/36793
Linux Kernel KVM 'kvm_dev_ioctl_get_supported_cpuid()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/36803
MySQL Empty Binary String Literal Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/31081
MySQL 'sql_parse.cc' Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/35609
MySQL MyISAM Table Privileges Secuity Bypass Vulnerability
http://www.securityfocus.com/bid/29106
MySQL Command Line Client HTML Special Characters HTML Injection Vulnerability
http://www.securityfocus.com/bid/31486
Newt Text Box Content Processing Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36515
Apache 'Options' and 'AllowOverride' Directives Security Bypass Vulnerability
http://www.securityfocus.com/bid/35115
FreeType Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34550
Apache 'mod_proxy_ajp' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34663
Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/30560
SILC Toolkit 'command.c' Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/36193
Ruby 'OCSP_basic_verify()' X.509 Certificate Verification Vulnerability
http://www.securityfocus.com/bid/33769
Ruby BigDecimal Library Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35278
SILC Toolkit Encoded OID Format String Vulnerability
http://www.securityfocus.com/bid/36192
Mozilla Firefox 'MakeScriptDialogTitle()' URI Spoofing Vulnerability
http://www.securityfocus.com/bid/37232
SILC Toolkit HTTP Server Format String Vulnerability
http://www.securityfocus.com/bid/36194
PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
http://www.securityfocus.com/bid/37079
PHP 5.2.10 and Prior Versions Multiple Vulnerabilities
http://www.securityfocus.com/bid/36449
PHP 5.2.8 and Prior Versions Multiple Vulnerabilities
http://www.securityfocus.com/bid/33927
PHP 'exif_read_data()' JPEG Image Processing Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35440
SILC Client Format String Vulnerability
http://www.securityfocus.com/bid/35940
PHP 'tempname()' 'safe_mode' Restriction-Bypass Vulnerability
http://www.securityfocus.com/bid/36555
Mozilla Firefox JavaScript 'Prompted Message' Spoofing Vulnerability
http://www.securityfocus.com/bid/37230
PHP 'proc_open()' 'safe_mode_protected_env_var' Restriction-Bypass Vulnerability
http://www.securityfocus.com/bid/37138
GD Graphics Library '_gdGetColors' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36712
Cyrus IMAP Server SIEVE Script Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36296
CUPS File Descriptors Handling Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37048
Dag Wieers Dstat 'sys.path' Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37131
OpenSSL 'EVP_VerifyFinal' Function Signature Verification Vulnerability
http://www.securityfocus.com/bid/33150
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
Postfix Local Information Disclosure and Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/30691
GCalendar Joomla! Component 'gcid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37141
Neon NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36079
Xerces-C++ Nested DTD Structure XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35986
Wget NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36205
libgadu Contact Description Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31951
Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36260
Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34383
Subversion Binary Delta Processing Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35983
Apache mod_proxy_ftp Remote Command Injection Vulnerability
http://www.securityfocus.com/bid/36254
Mod_Perl Path_Info Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/23192
Apache 'mod_deflate' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35623
Apache 'mod_proxy' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35565
Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35949
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
OpenSSL 'zlib' Compression Memory Leak Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31692
Sisplet CMS Komentar.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/23334
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
cURL / libcURL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36032
Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36097
libxml2 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36010
Fetchmail NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35951
Expat Unspecified XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37203
+ RHSA-2009:1625-1: Moderate: expat security update
http://rhn.redhat.com/errata/RHSA-2009-1625.html
+ PHP-SA-12/04/2009: PHP 5.3.1 open_basedir bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31078
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00060.html
- Linux Kernel 'ip_frag_reasm() ' Null Pointer Deference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37231
[ANNOUNCE] ANN: PostgreSQL Data Wizard 9.12 released
http://www.sqlmaestro.com/products/postgresql/datawizard/download/
[ANNOUNCE] GT portalBase version 2.4 released
http://www.gtportalbase.com/blog
[ANNOUNCE] Apache Harmony 5.0M12 available
http://harmony.apache.org/download.cgi
Security Vulnerability in the Solaris IP(7p) Kernel Module May Allow Remote Users to Panic the System, Resulting in a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268189-1
Security Vulnerability in the VBoxNetAdpCtl Configuration Tool for Sun VirtualBox May Lead to Escalation of Privileges
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268188-1
A Security Vulnerability in the ZFS Filesystem May Allow An Unprivileged User to Take Ownership of Files Belonging to Another User
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265908-1
A Security Vulnerability in the Java Runtime Environment With Verifying HMAC Digests may Allow Authentication to be Bypassed
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270475-1
Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Involving Handshake Renegotiation Affects OpenSSL
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1
Buffer and Integer Overflow Vulnerabilities in the Java Runtime Environment With Processing Audio and Image Files May Allow Privileges to be Escalated
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270474-1
Security Vulnerability in the Java Web Start Installer May be Leveraged to Allow Untrusted Java Web Start Application to Run As Trusted Application
http://sunsolve.sun.com/search/document.do?assetkey=1-66-269870-1
Multiple Buffer and Integer Overflow Vulnerabilities in Python (python(1)) May Lead to a Denial of Service (DoS) or Allow Execution of Arbitrary Code
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273570-1
A Security Vulnerability in Solaris Sockets Direct Protocol (SDP) Driver (sdp(7D)) may Allow Users to Exhaust Kernel Memory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-264730-1
Two Security Vulnerabilities in the Java Runtime Environment With Decoding DER Encoded Data and Parsing HTTP Headers may Result in a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270476-1
Multiple Security Vulnerabilities in the libexpat Library May Lead to a Denial of Service (DoS) Condition
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273630-1
Mandriva : htmldoc
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31108
Ubuntu Security Notice : Bind vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31111
Independent Researcher : PhpShop Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31115
Ubuntu Security Notice : Linux kernel vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31110
Dawid Golunski : Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection http://www.criticalwatch.com/support/security-advisories.aspx?AID=31114
Debian : New belpic packages fix cryptographic weakness
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31112
Independent Researcher : InterN0T Google Analytics plugin for Wordpress - XSS Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31116
Secunia : DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31113
SecurityReason.com : PHP 5.3.1 open_basedir bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31078
Apple : Java for Mac OS X 10.6 Update 1
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31074
Apple : Java for Mac OS X 10.5 Update 6
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31075
CERT Coordination Center : U.S. Defense Information Systems Agency (DISA) root compromise
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31079
Core Security Technologies : DAZ Studio Arbitrary Command Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31077
「EC-CUBE」におけるセキュリティ上の弱点(脆弱性)の注意喚起
http://www.ipa.go.jp/security/vuln/documents/2009/200912_ec-cube.html
電子メールの誤送信防止ソフトをレンタルで提供、日本ワムネット
http://itpro.nikkeibp.co.jp/article/NEWS/20091207/341650/?ST=security
マイクロソフトをかたるウイルスメール、パッチの事前通知日に出現
パッチに見せかけてウイルスをダウンロード、実行するとPCを乗っ取られる
http://itpro.nikkeibp.co.jp/article/NEWS/20091207/341674/?ST=security
マイクロソフトとアドビ、危険な脆弱性を修正するパッチ公開へ
2009年12月9日にそれぞれ公開、IEやFLASH PLAYERなどの脆弱性を解消
http://itpro.nikkeibp.co.jp/article/NEWS/20091207/341657/?ST=security
JVN#79762947 EC-CUBE における情報漏えいの脆弱性vhttp://jvn.jp/jp/JVN79762947/index.html
JVNDB-2009-002299 Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002299.html
JVNDB-2009-002298 Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002298.html
JVNDB-2009-002297 Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002297.html
JVNDB-2009-002296 Mozilla Firefox の JavaScript エンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002296.html
JVNDB-2009-001285 Xpdf および CUPS におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001285.html
JVNDB-2009-001267 JBIG2 MMR デコーダにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001267.html
JVNDB-2009-001266 JBIG2 MMR デコーダにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001266.html
JVNDB-2009-001265 JBIG2 デコーダにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001265.html
JVNDB-2009-001264 JBIG2 デコーダにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001264.html
JVNDB-2009-001263 JBIG2 デコーダにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001263.html
JVNDB-2009-001262 JBIG2 デコーダにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001262.html
JVNDB-2009-001261 JBIG2 デコーダにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001261.html
JVNDB-2009-001260 Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001260.html
JVNDB-2009-001259 Xpdf および CUPS の JBIG2 デコーダーにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001259.html
JVNDB-2009-001258 Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001258.html
JVNDB-2009-000078 EC-CUBE における情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000078.html
[USN-866-1] gnome-screensaver vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00118.html
[SECURITY] [DSA 1946-1] New belpic packages fix cryptographic weakness
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00097.html
[USN-865-1] Bind vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00102.html
CVE-2009-3586: CoreHTTP web server off-by-one buffer overflow vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00106.html
PhpShop Multiple Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00105.html
Mozilla Firefox JavaScript Prompt Spoofing Weakness
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00108.html
Secunia Research: DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00059.html
[InterN0T] Google Analytics plugin for Wordpress - XSS Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00056.html
Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00052.html
PHP 5.3.1 open_basedir bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00060.html
Cheat Sheet: Analyzing Malicious Documents
http://isc.sans.org/diary.html?storyid=7705
Layer 2 Network Protections – reloaded!
http://isc.sans.org/diary.html?storyid=7708
Java JRE Buffer and Integer Overflow
http://isc.sans.org/diary.html?storyid=7702
Max Power's Malware Paradise
http://isc.sans.org/diary.html?storyid=7693
The economics of security advice (MSFT research paper)
http://isc.sans.org/diary.html?storyid=7696
XML Security Library libtool Search Path Privilege Escalation Security Issue
http://secunia.com/advisories/37615/
Chipmunk Newsletter Cross-Site Request Forgery
http://secunia.com/advisories/37612/
Sun Solaris Python Multiple Vulnerabilities
http://secunia.com/advisories/37610/
IBM HTTP Server TLS Session Renegotiation Plaintext Injection
http://secunia.com/advisories/37604/
EC-CUBE Security Bypass Vulnerability
http://secunia.com/advisories/37603/
Wordpress Google Analytics Plugin Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37589/
Achievo Script Insertion and Arbitrary File Upload Vulnerabilities
http://secunia.com/advisories/37585/
IDEAL Administration ".ipj" File Processing Buffer Overflow
http://secunia.com/advisories/37572/
AROUNDMe "language_path" File Inclusion Vulnerability
http://secunia.com/advisories/37567/
Joomla YOOtheme Template Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37518/
LightNEasy FCKeditor File Upload Security Issue
http://secunia.com/advisories/37515/
Red Hat update for kernel
http://secunia.com/advisories/37595/
Sun Solaris GNU tar Archive Parsing Vulnerabilities
http://secunia.com/advisories/37594/
Sun Solaris libexpat Library XML Parsing Denial of Service
http://secunia.com/advisories/37593/
Jasc Paint Shop Pro PNG Buffer Overflow Vulnerability
http://secunia.com/advisories/37591/
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/37590/
Sun Solaris wget SSL Certificate NULL Character Processing Vulnerability
http://secunia.com/advisories/37582/
Apple Mac OS X update for Java
http://secunia.com/advisories/37581/
Uiga Church Portal Multiple Vulnerabilities
http://secunia.com/advisories/37576/
DAZ Studio File Association Security Issue
http://secunia.com/advisories/37570/
IIPImage Server Buffer Overflow Vulnerabilities
http://secunia.com/advisories/37565/
Simple Machines Forum Cross-Site Request Forgery
http://secunia.com/advisories/37557/
Sun Management Center XML Library Multiple Vulnerabilities
http://secunia.com/advisories/37555/
Joomla YJ Whois Module Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37525/
Micronet SP1910 Network Access Controller "msg" Cross-Site Scripting
http://secunia.com/advisories/37514/
DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
http://secunia.com/advisories/37507/
acpid Log File Permissions May Let Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2009/Dec/1023284.html
Invision Power Board Input Validation Flaw in 'moderate.php' Lets Remote Users Inject SQL Commands
http://securitytracker.com/alerts/2009/Dec/1023281.html
expat Buffer Over-read in big2_toUtf8() Lets Users Deny Service
http://securitytracker.com/alerts/2009/Dec/1023278.html
Cisco Security Agent Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023275.html
Cisco Unified Contact Center Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023274.html
Cisco ONS Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023273.html
Cisco Unified SIP Phones Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023272.html
Cisco Application Networking Manager Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023271.html
Cisco Wide Area Application Services Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023270.html
HP OpenView Network Node Manager DoS Vulnerability
http://www.securiteam.com/unixfocus/6B00120QAQ.html
CoreHTTP Web Server Buffer Overflow Vulnerability
http://www.securiteam.com/unixfocus/6C00220QAI.html
DevIL DICOM Buffer Overflow Vulnerability
http://www.securiteam.com/securitynews/6D00320QAA.html
U.S. Defense Information Systems Agency (DISA) Unix Security Readiness Review (SRR) Vulnerability
http://www.securiteam.com/securitynews/6E00420QAS.html
Linux Kernel Privilege Escalation and Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/3422
EC-CUBE "process()" Remote Customer Data Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/3421
Achievo Arbitrary File Upload and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/3420
Yoast Google Analytics for WordPress Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/3419
Jasc Paint Shop Pro PNG File Processing Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/3418
Vivid Ads Shopping Cart "prodid" Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/3417
IBM HTTP Server SSL/TLS Session Renegotiation Vulnerability
http://www.vupen.com/english/advisories/2009/3416
DevIL DICOM File Handling "GetUID()" Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/3415
Apple Mac OS X Security Update Fixes Multiple Java Vulnerabilities
http://www.vupen.com/english/advisories/2009/3414
Sun OpenSolaris IP Kernel Module Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/3413
Sun Solaris Python Code Execution and Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/3412
Sun Management Center XML Library Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2009/3411
Sun Solaris Security Update Fixes Wget Certificate Spoofing Vulnerability
http://www.vupen.com/english/advisories/2009/3410
Sun Solaris Security Update Fixes Libexpat Denial of Service Issues
http://www.vupen.com/english/advisories/2009/3398
Sun Solaris Security Update Fixes GNU tar Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2009/3397
Adobe Illustrator CS4 v14.0.0 eps Universal Buffer Overflow (meta)
http://www.exploit-db.com/exploits/10344
gAlan 0.2.1 Buffer Overflow 0day Exploit
http://www.exploit-db.com/exploits/10339
HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit (Meta)
http://www.exploit-db.com/exploits/10335
RHBA-2009:1641-1: samba bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1641.html
RHSA-2009:1625-1: Moderate: expat security update
http://rhn.redhat.com/errata/RHSA-2009-1625.html
RHSA-2009:1642-2: Important: acpid security update
http://rhn.redhat.com/errata/RHSA-2009-1642.html
RHBA-2009:1640-1: samba bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1640.html
Kernel release: 2.6.31.7-rc1
http://www.linux.org/news/2009/12/06/0002.html
Kernel release: 2.6.27.40-rc1
http://www.linux.org/news/2009/12/06/0001.html
Kernel release: 2.6.30.10
http://www.linux.org/news/2009/12/04/0001.html
ISC DHCP Server Host Definition Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35669
ISC DHCP 'dhclient' 'script_write_params()' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35668
LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability
http://www.securityfocus.com/bid/35451
LibTIFF Multiple Remote Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35652
Pango 'pango_glyph_string_set_size()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34870
'Compress::Raw::Zlib' Perl Module Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35307
IETF and W3C XML Digital Signature Specification HMAC Truncation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35671
JasPer JPC_QCX_GetCompParm Function JP2 File Handling Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/24052
libsndfile VOC and AIFF Processing Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34978
Mono Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/30471
Mono 'System.Web' HTTP Header Injection Vulnerability
http://www.securityfocus.com/bid/30867
libmodplug 'load_pat.c' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34747
libmodplug 's3m' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/30801
Mono System.Math BigInteger Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/26279
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35138
OpenSSL DTLS Packets Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/35001
Multiple Vendor Clientless SSL VPN Products Same Origin Policy Bypass Vulnerability
http://www.securityfocus.com/bid/37152
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35417
OpenSSL 'ChangeCipherSpec' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35174
NTP 'ntpq' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34481
libwmf WMF Image File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34792
libcdaudio 'cddb.c' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/32122
NTP 'ntpd' Autokey Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35017
PostgreSQL Conversion Encoding Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34090
Grip CDDB Response Multiple Matches Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/12770
Wireshark ERF File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36591
Microsoft HTML Help Workshop '.hhp' File Handling Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/33189
GStreamer gst-plugins-good 'gstpngdec.c' PNG Output Buffer Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35172
GnuTLS NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35952
GnuTLS Prior to 2.6.6 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/34783
Cyrus SASL 'sasl_encode64()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34961
PostgreSQL Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36314
HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35727
GNU Tar Dot_Dot Function Remote Directory Traversal Vulnerability
http://www.securityfocus.com/bid/25417
GNU TAR and CPIO safer_name_suffix Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/26445
Microsoft Active Directory LDAP Request Stack Exhaustion Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36918
OpenBSD XMM Exceptions Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36589
libxml2 'xmlBufferResize()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/32331
Quiksoft EasyMail 'AddAttachment()' Method ActiveX Control Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36440
libxml XML Entity Name Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31126
libxml2 'xmlSAX2Characters()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/32326
ISC BIND 9 DNSSEC Query Response Additional Section Remote Cache Poisoning Vulnerability
http://www.securityfocus.com/bid/37118
PostgreSQL Multiple Privilege Escalation and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/27163
Linux Kernel 'nfs4_proc_lock()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36936
Linux Kernel 64-bit Kernel Register Memory Leak Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36576
Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36901
Sun Solaris IP(7p) Race Condition Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37225
Wireshark 1.2.2 and 1.0.9 Multiple Vulnerabilities
http://www.securityfocus.com/bid/36846
Wireshark Prior to 1.0.7 Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/34457
Wireshark PN-DCP Data Format String Vulnerability
http://www.securityfocus.com/bid/34291
Wireshark 1.2.0 Multiple Vulnerabilities
http://www.securityfocus.com/bid/35748
GD Graphics Library '_gdGetColors' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36712
UBB.threads Multiple File Include Vulnerabilities
http://www.securityfocus.com/bid/37205
Linux Kernel '/drivers/net/r8169.c' Out-of-IOMMU Error Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36706
EMC Captiva PixTools Distributed Imaging ActiveX Control Multiple Insecure Method Vulnerabilities
http://www.securityfocus.com/bid/36566
Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/36824
Linux Kernel KVM 'kvm_dev_ioctl_get_supported_cpuid()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/36803
Linux Kernel 'hfc_usb.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37036
Linux Kernel 'net/mac80211/' Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/37170
Multiple Symantec Products Intel Common Base Agent Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/34671
Linux Kernel Subsystem Connector Missing Capability Check Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/36834
Linux Kernel 'unix_stream_connect()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36723
Linux Kernel 'drivers/scsi/gdth.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37068
Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36827
Linux Kernel Keyring 'refcount' Local Integer Underflow Vulnerability
http://www.securityfocus.com/bid/36793
Linux Kernel 'megaraid_sas' Driver Insecure File Permission Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37019
Linux Kernel NFSV4 CallbackClient NULL Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36794
Python Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/30491
Linux Kernel 'fput()' NULL Pointer Dereference Local Denial of Service Vulnerabilty
http://www.securityfocus.com/bid/36953
Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36304
Linux Kernel 'net/ax25/af_ax25.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36635
Python zlib Module Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/28715
Python ImageOP Module Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/25696
EMC RepliStor Server 'rep_serv.exe' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36738
Linux Kernel KVM 'handle_dr()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37221
Achievo Document Types Section Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37219
Achievo Scheduler Category HTML Injection Vulnerability
http://www.securityfocus.com/bid/37220
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36839
nginx HTTP Request Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36384
Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36097
Pidgin Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35067
Pidgin 'msn_slplink_process_msg()' NULL Pointer Dereference Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36071
Pidgin 'protocols/jabber/auth.c' JABBER Server XMPP Specifications Man In The Middle Vulnerability
http://www.securityfocus.com/bid/36368
Pidgin 'msn_slplink_process_msg()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/33414
Pidgin Yahoo Instant Messenger Protocol Link Denial of Service Vulnerability
http://www.securityfocus.com/bid/36367
Pidgin OSCAR Protocol Web Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/35530
Pidgin Libpurple Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/36277
Pidgin NSS plugin SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/30553
Pidgin UPnP and Jabber Protocols Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/29985
Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Samba setuid 'mount.cifs' Verbose Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36572
Samba Format String And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35472
FFmpeg 'libavformat/4xm.c' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/33502
xine-lib 1.1.15 and Prior Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/30797
xine-lib STTS QuickTime Atom Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34384
xine-lib OGG Processing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/30699
xine-lib 1.1.14 Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/30698
GNU Libtool 'libltdl' Library Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37128
FFmpeg 'lavf_demux' Animated GIF Processing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31234
FFmpeg TCP/UDP Memory Leak Denial Of ServiceVulnerability
http://www.securityfocus.com/bid/37026
Perl IO::Socket::SSL 'verify_hostname_of_cert()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/35587
libmikmod '.XM' File Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/33240
libmikmod Multiple Sound Channel Media Playback Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/33235
JasPer 1.900.1 Multiple Vulnerabilities
http://www.securityfocus.com/bid/31470
Netpbm 'pamperspective' Utility Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31871
ImageMagick TIFF File Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35111
Graphviz Graph Parser Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31648
D-Bus 'dbus_signature_validate()' Type Signature Denial of Service Vulnerability
http://www.securityfocus.com/bid/31602
Newt Text Box Content Processing Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36515
Expat Unspecified XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37203
FreeType Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34550
SILC Toolkit 'command.c' Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/36193
SILC Toolkit Encoded OID Format String Vulnerability
http://www.securityfocus.com/bid/36192
SILC Toolkit HTTP Server Format String Vulnerability
http://www.securityfocus.com/bid/36194
SILC Client Format String Vulnerability
http://www.securityfocus.com/bid/35940
Cyrus IMAP Server SIEVE Script Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36296
Dag Wieers Dstat 'sys.path' Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37131
CUPS File Descriptors Handling Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37048
OpenSSL 'EVP_VerifyFinal' Function Signature Verification Vulnerability
http://www.securityfocus.com/bid/33150
AROUNDMe 'components/core/connect.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/37234
YABSoft Advanced Image Hosting Script 'search.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37233
Mozilla Firefox 'MakeScriptDialogTitle()' URI Spoofing Vulnerability
http://www.securityfocus.com/bid/37232
Linux Kernel 'ip_frag_reasm() ' Null Pointer Deference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37231
Mozilla Firefox JavaScript 'Prompted Message' Spoofing Vulnerability
http://www.securityfocus.com/bid/37230
Elkagroup Image Gallery 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37229
iWeb Server URL Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37228
PhpShop Cross-Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37227
Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
http://www.securityfocus.com/bid/37226
LightNEasy fckeditor Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37224
EC-CUBE 'LC_Page_Admin_Customer_SearchCustomer.php' Security Bypass Vulnerability
http://www.securityfocus.com/bid/37223
Ghostscript Multiple Input Validation and Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34184
Ghostscript 'CCITTFax' Decoding Filter Denial of Service Vulnerability
http://www.securityfocus.com/bid/34337
Ghostscript 'gdevpdtb.c' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34340
Ghostscript 'jbig2dec' JBIG2 Processing Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34445
Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36639
VMware Workstation DHCP Server Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/25729
Linux kernel 'O_EXCL' NFSv4 Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36472
Linux Kernel 'PER_CLEAR_ON_SETID' Incomplete Personality List Access Validation Weakness
http://www.securityfocus.com/bid/35647
Linux Kernel with SELinux 'mmap_min_addr' Low Memory NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36051
Linux Kernel '__scm_destroy()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/32154
Linux Kernel Multiple Protocols Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36176
Linux Kernel 'e1000/e1000_main.c' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35185
Linux Kernel 'clear_child_tid()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35930
Linux Kernel 'exit_notify()' CAP_KILL Verification Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34405
Linux Kernel 'sendmsg()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/32516
Mozilla Firefox CVE-2009-3380 Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36871
Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
http://www.securityfocus.com/bid/36867
Mozilla Firefox Floating Point Conversion Heap Overflow Vulnerability
http://www.securityfocus.com/bid/36851
Mozilla Firefox and SeaMonkey 'libpr0n' GIF Parser Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36855
Mozilla Firefox Download Manager World Writable File Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36852
Mozilla Firefox CVE-2009-3382 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36866
Mozilla Firefox XPCOM Utility Chrome Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36857
Mozilla Firefox 'document.getSelect' Cross Domain Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36858
Mozilla Firefox Form History Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36853
Mozilla Firefox and SeaMonkey Proxy Auto-Configuration File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36856
Mozilla Firefox Yoono Extension DOM Event Handler Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/37123
427BB 'showpost.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/37210
Yoast Google Analytics for WordPress Plugin 404 Error Page Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37209
Invision Power Board Local File Include and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37208
DevIL DICOM File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37207
Postfix Local Information Disclosure and Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/30691
Sun Java SE November 2009 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36881
Neon NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36079
Xerces-C++ Nested DTD Structure XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35986
Apple Mac OS X Java Applet Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/37206
QEMU Virtio Networking Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37201
Corel Paint Shop Pro PNG File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37204
Security Readiness Review Evaluation Scripts Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37200
libgadu Contact Description Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31951
Wget NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36205
Mod_Perl Path_Info Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/23192
Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34383
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35949
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
cURL / libcURL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36032
DevIL DICOM File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37207
Apple Mac OS X Java Applet Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/37206
QEMU Virtio Networking Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37201
Corel Paint Shop Pro PNG File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37204
Security Readiness Review Evaluation Scripts Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37200
Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37085
IPsec-Tools Prior to 0.7.2 Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/34765
acpid Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/34692
Mozilla Firefox and Seamonkey Regular Expression Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35891
Mozilla Firefox CVE-2009-3379 Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36875
YOOtheme Warp5 Joomla! Componenet 'yt_color' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37239
http://rhn.redhat.com/errata/RHSA-2009-1625.html
+ PHP-SA-12/04/2009: PHP 5.3.1 open_basedir bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31078
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00060.html
- Linux Kernel 'ip_frag_reasm() ' Null Pointer Deference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37231
[ANNOUNCE] ANN: PostgreSQL Data Wizard 9.12 released
http://www.sqlmaestro.com/products/postgresql/datawizard/download/
[ANNOUNCE] GT portalBase version 2.4 released
http://www.gtportalbase.com/blog
[ANNOUNCE] Apache Harmony 5.0M12 available
http://harmony.apache.org/download.cgi
Security Vulnerability in the Solaris IP(7p) Kernel Module May Allow Remote Users to Panic the System, Resulting in a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268189-1
Security Vulnerability in the VBoxNetAdpCtl Configuration Tool for Sun VirtualBox May Lead to Escalation of Privileges
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268188-1
A Security Vulnerability in the ZFS Filesystem May Allow An Unprivileged User to Take Ownership of Files Belonging to Another User
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265908-1
A Security Vulnerability in the Java Runtime Environment With Verifying HMAC Digests may Allow Authentication to be Bypassed
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270475-1
Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Involving Handshake Renegotiation Affects OpenSSL
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1
Buffer and Integer Overflow Vulnerabilities in the Java Runtime Environment With Processing Audio and Image Files May Allow Privileges to be Escalated
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270474-1
Security Vulnerability in the Java Web Start Installer May be Leveraged to Allow Untrusted Java Web Start Application to Run As Trusted Application
http://sunsolve.sun.com/search/document.do?assetkey=1-66-269870-1
Multiple Buffer and Integer Overflow Vulnerabilities in Python (python(1)) May Lead to a Denial of Service (DoS) or Allow Execution of Arbitrary Code
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273570-1
A Security Vulnerability in Solaris Sockets Direct Protocol (SDP) Driver (sdp(7D)) may Allow Users to Exhaust Kernel Memory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-264730-1
Two Security Vulnerabilities in the Java Runtime Environment With Decoding DER Encoded Data and Parsing HTTP Headers may Result in a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-270476-1
Multiple Security Vulnerabilities in the libexpat Library May Lead to a Denial of Service (DoS) Condition
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273630-1
Mandriva : htmldoc
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31108
Ubuntu Security Notice : Bind vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31111
Independent Researcher : PhpShop Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31115
Ubuntu Security Notice : Linux kernel vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31110
Dawid Golunski : Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection http://www.criticalwatch.com/support/security-advisories.aspx?AID=31114
Debian : New belpic packages fix cryptographic weakness
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31112
Independent Researcher : InterN0T Google Analytics plugin for Wordpress - XSS Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31116
Secunia : DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31113
SecurityReason.com : PHP 5.3.1 open_basedir bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31078
Apple : Java for Mac OS X 10.6 Update 1
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31074
Apple : Java for Mac OS X 10.5 Update 6
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31075
CERT Coordination Center : U.S. Defense Information Systems Agency (DISA) root compromise
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31079
Core Security Technologies : DAZ Studio Arbitrary Command Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31077
「EC-CUBE」におけるセキュリティ上の弱点(脆弱性)の注意喚起
http://www.ipa.go.jp/security/vuln/documents/2009/200912_ec-cube.html
電子メールの誤送信防止ソフトをレンタルで提供、日本ワムネット
http://itpro.nikkeibp.co.jp/article/NEWS/20091207/341650/?ST=security
マイクロソフトをかたるウイルスメール、パッチの事前通知日に出現
パッチに見せかけてウイルスをダウンロード、実行するとPCを乗っ取られる
http://itpro.nikkeibp.co.jp/article/NEWS/20091207/341674/?ST=security
マイクロソフトとアドビ、危険な脆弱性を修正するパッチ公開へ
2009年12月9日にそれぞれ公開、IEやFLASH PLAYERなどの脆弱性を解消
http://itpro.nikkeibp.co.jp/article/NEWS/20091207/341657/?ST=security
JVN#79762947 EC-CUBE における情報漏えいの脆弱性vhttp://jvn.jp/jp/JVN79762947/index.html
JVNDB-2009-002299 Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002299.html
JVNDB-2009-002298 Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002298.html
JVNDB-2009-002297 Mozilla Firefox の ブラウザエンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002297.html
JVNDB-2009-002296 Mozilla Firefox の JavaScript エンジンにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002296.html
JVNDB-2009-001285 Xpdf および CUPS におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001285.html
JVNDB-2009-001267 JBIG2 MMR デコーダにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001267.html
JVNDB-2009-001266 JBIG2 MMR デコーダにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001266.html
JVNDB-2009-001265 JBIG2 デコーダにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001265.html
JVNDB-2009-001264 JBIG2 デコーダにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001264.html
JVNDB-2009-001263 JBIG2 デコーダにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001263.html
JVNDB-2009-001262 JBIG2 デコーダにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001262.html
JVNDB-2009-001261 JBIG2 デコーダにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001261.html
JVNDB-2009-001260 Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001260.html
JVNDB-2009-001259 Xpdf および CUPS の JBIG2 デコーダーにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001259.html
JVNDB-2009-001258 Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001258.html
JVNDB-2009-000078 EC-CUBE における情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000078.html
[USN-866-1] gnome-screensaver vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00118.html
[SECURITY] [DSA 1946-1] New belpic packages fix cryptographic weakness
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00097.html
[USN-865-1] Bind vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00102.html
CVE-2009-3586: CoreHTTP web server off-by-one buffer overflow vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00106.html
PhpShop Multiple Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00105.html
Mozilla Firefox JavaScript Prompt Spoofing Weakness
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00108.html
Secunia Research: DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00059.html
[InterN0T] Google Analytics plugin for Wordpress - XSS Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00056.html
Invision Power Board <= 3.0.4 Local PHP File Inclusion and SQL Injection http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00052.html
PHP 5.3.1 open_basedir bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-12/msg00060.html
Cheat Sheet: Analyzing Malicious Documents
http://isc.sans.org/diary.html?storyid=7705
Layer 2 Network Protections – reloaded!
http://isc.sans.org/diary.html?storyid=7708
Java JRE Buffer and Integer Overflow
http://isc.sans.org/diary.html?storyid=7702
Max Power's Malware Paradise
http://isc.sans.org/diary.html?storyid=7693
The economics of security advice (MSFT research paper)
http://isc.sans.org/diary.html?storyid=7696
XML Security Library libtool Search Path Privilege Escalation Security Issue
http://secunia.com/advisories/37615/
Chipmunk Newsletter Cross-Site Request Forgery
http://secunia.com/advisories/37612/
Sun Solaris Python Multiple Vulnerabilities
http://secunia.com/advisories/37610/
IBM HTTP Server TLS Session Renegotiation Plaintext Injection
http://secunia.com/advisories/37604/
EC-CUBE Security Bypass Vulnerability
http://secunia.com/advisories/37603/
Wordpress Google Analytics Plugin Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37589/
Achievo Script Insertion and Arbitrary File Upload Vulnerabilities
http://secunia.com/advisories/37585/
IDEAL Administration ".ipj" File Processing Buffer Overflow
http://secunia.com/advisories/37572/
AROUNDMe "language_path" File Inclusion Vulnerability
http://secunia.com/advisories/37567/
Joomla YOOtheme Template Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37518/
LightNEasy FCKeditor File Upload Security Issue
http://secunia.com/advisories/37515/
Red Hat update for kernel
http://secunia.com/advisories/37595/
Sun Solaris GNU tar Archive Parsing Vulnerabilities
http://secunia.com/advisories/37594/
Sun Solaris libexpat Library XML Parsing Denial of Service
http://secunia.com/advisories/37593/
Jasc Paint Shop Pro PNG Buffer Overflow Vulnerability
http://secunia.com/advisories/37591/
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/37590/
Sun Solaris wget SSL Certificate NULL Character Processing Vulnerability
http://secunia.com/advisories/37582/
Apple Mac OS X update for Java
http://secunia.com/advisories/37581/
Uiga Church Portal Multiple Vulnerabilities
http://secunia.com/advisories/37576/
DAZ Studio File Association Security Issue
http://secunia.com/advisories/37570/
IIPImage Server Buffer Overflow Vulnerabilities
http://secunia.com/advisories/37565/
Simple Machines Forum Cross-Site Request Forgery
http://secunia.com/advisories/37557/
Sun Management Center XML Library Multiple Vulnerabilities
http://secunia.com/advisories/37555/
Joomla YJ Whois Module Cross-Site Scripting Vulnerability
http://secunia.com/advisories/37525/
Micronet SP1910 Network Access Controller "msg" Cross-Site Scripting
http://secunia.com/advisories/37514/
DevIL DICOM "GetUID()" Buffer Overflow Vulnerability
http://secunia.com/advisories/37507/
acpid Log File Permissions May Let Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2009/Dec/1023284.html
Invision Power Board Input Validation Flaw in 'moderate.php' Lets Remote Users Inject SQL Commands
http://securitytracker.com/alerts/2009/Dec/1023281.html
expat Buffer Over-read in big2_toUtf8() Lets Users Deny Service
http://securitytracker.com/alerts/2009/Dec/1023278.html
Cisco Security Agent Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023275.html
Cisco Unified Contact Center Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023274.html
Cisco ONS Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023273.html
Cisco Unified SIP Phones Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023272.html
Cisco Application Networking Manager Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023271.html
Cisco Wide Area Application Services Protocol Flaw in SSL Renegotiation May Let Remote Users Conduct Man-in-the-Middle Attacks
http://securitytracker.com/alerts/2009/Dec/1023270.html
HP OpenView Network Node Manager DoS Vulnerability
http://www.securiteam.com/unixfocus/6B00120QAQ.html
CoreHTTP Web Server Buffer Overflow Vulnerability
http://www.securiteam.com/unixfocus/6C00220QAI.html
DevIL DICOM Buffer Overflow Vulnerability
http://www.securiteam.com/securitynews/6D00320QAA.html
U.S. Defense Information Systems Agency (DISA) Unix Security Readiness Review (SRR) Vulnerability
http://www.securiteam.com/securitynews/6E00420QAS.html
Linux Kernel Privilege Escalation and Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/3422
EC-CUBE "process()" Remote Customer Data Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/3421
Achievo Arbitrary File Upload and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/3420
Yoast Google Analytics for WordPress Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/3419
Jasc Paint Shop Pro PNG File Processing Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/3418
Vivid Ads Shopping Cart "prodid" Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/3417
IBM HTTP Server SSL/TLS Session Renegotiation Vulnerability
http://www.vupen.com/english/advisories/2009/3416
DevIL DICOM File Handling "GetUID()" Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/3415
Apple Mac OS X Security Update Fixes Multiple Java Vulnerabilities
http://www.vupen.com/english/advisories/2009/3414
Sun OpenSolaris IP Kernel Module Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/3413
Sun Solaris Python Code Execution and Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/3412
Sun Management Center XML Library Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2009/3411
Sun Solaris Security Update Fixes Wget Certificate Spoofing Vulnerability
http://www.vupen.com/english/advisories/2009/3410
Sun Solaris Security Update Fixes Libexpat Denial of Service Issues
http://www.vupen.com/english/advisories/2009/3398
Sun Solaris Security Update Fixes GNU tar Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2009/3397
Adobe Illustrator CS4 v14.0.0 eps Universal Buffer Overflow (meta)
http://www.exploit-db.com/exploits/10344
gAlan 0.2.1 Buffer Overflow 0day Exploit
http://www.exploit-db.com/exploits/10339
HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit (Meta)
http://www.exploit-db.com/exploits/10335
RHBA-2009:1641-1: samba bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1641.html
RHSA-2009:1625-1: Moderate: expat security update
http://rhn.redhat.com/errata/RHSA-2009-1625.html
RHSA-2009:1642-2: Important: acpid security update
http://rhn.redhat.com/errata/RHSA-2009-1642.html
RHBA-2009:1640-1: samba bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1640.html
Kernel release: 2.6.31.7-rc1
http://www.linux.org/news/2009/12/06/0002.html
Kernel release: 2.6.27.40-rc1
http://www.linux.org/news/2009/12/06/0001.html
Kernel release: 2.6.30.10
http://www.linux.org/news/2009/12/04/0001.html
ISC DHCP Server Host Definition Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35669
ISC DHCP 'dhclient' 'script_write_params()' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35668
LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability
http://www.securityfocus.com/bid/35451
LibTIFF Multiple Remote Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35652
Pango 'pango_glyph_string_set_size()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34870
'Compress::Raw::Zlib' Perl Module Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35307
IETF and W3C XML Digital Signature Specification HMAC Truncation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35671
JasPer JPC_QCX_GetCompParm Function JP2 File Handling Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/24052
libsndfile VOC and AIFF Processing Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34978
Mono Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/30471
Mono 'System.Web' HTTP Header Injection Vulnerability
http://www.securityfocus.com/bid/30867
libmodplug 'load_pat.c' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34747
libmodplug 's3m' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/30801
Mono System.Math BigInteger Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/26279
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35138
OpenSSL DTLS Packets Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/35001
Multiple Vendor Clientless SSL VPN Products Same Origin Policy Bypass Vulnerability
http://www.securityfocus.com/bid/37152
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35417
OpenSSL 'ChangeCipherSpec' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35174
NTP 'ntpq' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34481
libwmf WMF Image File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34792
libcdaudio 'cddb.c' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/32122
NTP 'ntpd' Autokey Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35017
PostgreSQL Conversion Encoding Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34090
Grip CDDB Response Multiple Matches Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/12770
Wireshark ERF File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36591
Microsoft HTML Help Workshop '.hhp' File Handling Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/33189
GStreamer gst-plugins-good 'gstpngdec.c' PNG Output Buffer Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35172
GnuTLS NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35952
GnuTLS Prior to 2.6.6 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/34783
Cyrus SASL 'sasl_encode64()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34961
PostgreSQL Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36314
HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35727
GNU Tar Dot_Dot Function Remote Directory Traversal Vulnerability
http://www.securityfocus.com/bid/25417
GNU TAR and CPIO safer_name_suffix Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/26445
Microsoft Active Directory LDAP Request Stack Exhaustion Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36918
OpenBSD XMM Exceptions Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36589
libxml2 'xmlBufferResize()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/32331
Quiksoft EasyMail 'AddAttachment()' Method ActiveX Control Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36440
libxml XML Entity Name Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31126
libxml2 'xmlSAX2Characters()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/32326
ISC BIND 9 DNSSEC Query Response Additional Section Remote Cache Poisoning Vulnerability
http://www.securityfocus.com/bid/37118
PostgreSQL Multiple Privilege Escalation and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/27163
Linux Kernel 'nfs4_proc_lock()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36936
Linux Kernel 64-bit Kernel Register Memory Leak Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36576
Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36901
Sun Solaris IP(7p) Race Condition Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37225
Wireshark 1.2.2 and 1.0.9 Multiple Vulnerabilities
http://www.securityfocus.com/bid/36846
Wireshark Prior to 1.0.7 Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/34457
Wireshark PN-DCP Data Format String Vulnerability
http://www.securityfocus.com/bid/34291
Wireshark 1.2.0 Multiple Vulnerabilities
http://www.securityfocus.com/bid/35748
GD Graphics Library '_gdGetColors' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36712
UBB.threads Multiple File Include Vulnerabilities
http://www.securityfocus.com/bid/37205
Linux Kernel '/drivers/net/r8169.c' Out-of-IOMMU Error Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36706
EMC Captiva PixTools Distributed Imaging ActiveX Control Multiple Insecure Method Vulnerabilities
http://www.securityfocus.com/bid/36566
Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/36824
Linux Kernel KVM 'kvm_dev_ioctl_get_supported_cpuid()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/36803
Linux Kernel 'hfc_usb.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37036
Linux Kernel 'net/mac80211/' Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/37170
Multiple Symantec Products Intel Common Base Agent Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/34671
Linux Kernel Subsystem Connector Missing Capability Check Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/36834
Linux Kernel 'unix_stream_connect()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36723
Linux Kernel 'drivers/scsi/gdth.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37068
Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36827
Linux Kernel Keyring 'refcount' Local Integer Underflow Vulnerability
http://www.securityfocus.com/bid/36793
Linux Kernel 'megaraid_sas' Driver Insecure File Permission Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37019
Linux Kernel NFSV4 CallbackClient NULL Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36794
Python Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/30491
Linux Kernel 'fput()' NULL Pointer Dereference Local Denial of Service Vulnerabilty
http://www.securityfocus.com/bid/36953
Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36304
Linux Kernel 'net/ax25/af_ax25.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36635
Python zlib Module Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/28715
Python ImageOP Module Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/25696
EMC RepliStor Server 'rep_serv.exe' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36738
Linux Kernel KVM 'handle_dr()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37221
Achievo Document Types Section Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37219
Achievo Scheduler Category HTML Injection Vulnerability
http://www.securityfocus.com/bid/37220
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36839
nginx HTTP Request Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36384
Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36097
Pidgin Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35067
Pidgin 'msn_slplink_process_msg()' NULL Pointer Dereference Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36071
Pidgin 'protocols/jabber/auth.c' JABBER Server XMPP Specifications Man In The Middle Vulnerability
http://www.securityfocus.com/bid/36368
Pidgin 'msn_slplink_process_msg()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/33414
Pidgin Yahoo Instant Messenger Protocol Link Denial of Service Vulnerability
http://www.securityfocus.com/bid/36367
Pidgin OSCAR Protocol Web Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/35530
Pidgin Libpurple Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/36277
Pidgin NSS plugin SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/30553
Pidgin UPnP and Jabber Protocols Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/29985
Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Samba setuid 'mount.cifs' Verbose Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36572
Samba Format String And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35472
FFmpeg 'libavformat/4xm.c' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/33502
xine-lib 1.1.15 and Prior Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/30797
xine-lib STTS QuickTime Atom Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34384
xine-lib OGG Processing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/30699
xine-lib 1.1.14 Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/30698
GNU Libtool 'libltdl' Library Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37128
FFmpeg 'lavf_demux' Animated GIF Processing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31234
FFmpeg TCP/UDP Memory Leak Denial Of ServiceVulnerability
http://www.securityfocus.com/bid/37026
Perl IO::Socket::SSL 'verify_hostname_of_cert()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/35587
libmikmod '.XM' File Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/33240
libmikmod Multiple Sound Channel Media Playback Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/33235
JasPer 1.900.1 Multiple Vulnerabilities
http://www.securityfocus.com/bid/31470
Netpbm 'pamperspective' Utility Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31871
ImageMagick TIFF File Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35111
Graphviz Graph Parser Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31648
D-Bus 'dbus_signature_validate()' Type Signature Denial of Service Vulnerability
http://www.securityfocus.com/bid/31602
Newt Text Box Content Processing Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36515
Expat Unspecified XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37203
FreeType Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34550
SILC Toolkit 'command.c' Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/36193
SILC Toolkit Encoded OID Format String Vulnerability
http://www.securityfocus.com/bid/36192
SILC Toolkit HTTP Server Format String Vulnerability
http://www.securityfocus.com/bid/36194
SILC Client Format String Vulnerability
http://www.securityfocus.com/bid/35940
Cyrus IMAP Server SIEVE Script Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36296
Dag Wieers Dstat 'sys.path' Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37131
CUPS File Descriptors Handling Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37048
OpenSSL 'EVP_VerifyFinal' Function Signature Verification Vulnerability
http://www.securityfocus.com/bid/33150
AROUNDMe 'components/core/connect.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/37234
YABSoft Advanced Image Hosting Script 'search.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37233
Mozilla Firefox 'MakeScriptDialogTitle()' URI Spoofing Vulnerability
http://www.securityfocus.com/bid/37232
Linux Kernel 'ip_frag_reasm() ' Null Pointer Deference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37231
Mozilla Firefox JavaScript 'Prompted Message' Spoofing Vulnerability
http://www.securityfocus.com/bid/37230
Elkagroup Image Gallery 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37229
iWeb Server URL Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37228
PhpShop Cross-Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37227
Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
http://www.securityfocus.com/bid/37226
LightNEasy fckeditor Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37224
EC-CUBE 'LC_Page_Admin_Customer_SearchCustomer.php' Security Bypass Vulnerability
http://www.securityfocus.com/bid/37223
Ghostscript Multiple Input Validation and Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34184
Ghostscript 'CCITTFax' Decoding Filter Denial of Service Vulnerability
http://www.securityfocus.com/bid/34337
Ghostscript 'gdevpdtb.c' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34340
Ghostscript 'jbig2dec' JBIG2 Processing Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34445
Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36639
VMware Workstation DHCP Server Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/25729
Linux kernel 'O_EXCL' NFSv4 Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36472
Linux Kernel 'PER_CLEAR_ON_SETID' Incomplete Personality List Access Validation Weakness
http://www.securityfocus.com/bid/35647
Linux Kernel with SELinux 'mmap_min_addr' Low Memory NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36051
Linux Kernel '__scm_destroy()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/32154
Linux Kernel Multiple Protocols Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36176
Linux Kernel 'e1000/e1000_main.c' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35185
Linux Kernel 'clear_child_tid()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35930
Linux Kernel 'exit_notify()' CAP_KILL Verification Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34405
Linux Kernel 'sendmsg()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/32516
Mozilla Firefox CVE-2009-3380 Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36871
Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
http://www.securityfocus.com/bid/36867
Mozilla Firefox Floating Point Conversion Heap Overflow Vulnerability
http://www.securityfocus.com/bid/36851
Mozilla Firefox and SeaMonkey 'libpr0n' GIF Parser Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36855
Mozilla Firefox Download Manager World Writable File Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36852
Mozilla Firefox CVE-2009-3382 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36866
Mozilla Firefox XPCOM Utility Chrome Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36857
Mozilla Firefox 'document.getSelect' Cross Domain Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36858
Mozilla Firefox Form History Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36853
Mozilla Firefox and SeaMonkey Proxy Auto-Configuration File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36856
Mozilla Firefox Yoono Extension DOM Event Handler Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/37123
427BB 'showpost.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/37210
Yoast Google Analytics for WordPress Plugin 404 Error Page Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37209
Invision Power Board Local File Include and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37208
DevIL DICOM File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37207
Postfix Local Information Disclosure and Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/30691
Sun Java SE November 2009 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36881
Neon NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36079
Xerces-C++ Nested DTD Structure XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35986
Apple Mac OS X Java Applet Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/37206
QEMU Virtio Networking Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37201
Corel Paint Shop Pro PNG File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37204
Security Readiness Review Evaluation Scripts Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37200
libgadu Contact Description Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31951
Wget NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36205
Mod_Perl Path_Info Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/23192
Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34383
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35949
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
cURL / libcURL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36032
DevIL DICOM File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37207
Apple Mac OS X Java Applet Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/37206
QEMU Virtio Networking Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37201
Corel Paint Shop Pro PNG File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37204
Security Readiness Review Evaluation Scripts Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37200
Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37085
IPsec-Tools Prior to 0.7.2 Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/34765
acpid Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/34692
Mozilla Firefox and Seamonkey Regular Expression Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35891
Mozilla Firefox CVE-2009-3379 Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36875
YOOtheme Warp5 Joomla! Componenet 'yt_color' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37239
このコメントは投稿者によって削除されました。
返信削除