HITACHI uCosminexus V8.5 released
http://www.hitachi.co.jp/New/cnews/month/2010/01/0127.html
[Announce] Release of Apache MyFaces Trinidad 1.2.13
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310661&styleName=Html&version=12314170
Linux Kernel release: 2.6.32.7-rc1
http://www.linux.org/news/2010/01/26/0002.html
MySQL 5.0.90 (Not yet released)
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-90.html
JPCERT/CC WEEKLY REPORT 2010-01-27
http://www.jpcert.or.jp/wr/2010/wr100301.html
JVNDB-2009-002453 Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002453.html
JVNDB-2009-002452 Adobe Flash Media Server におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002452.html
JVNDB-2009-002451 Adobe Reader および Acrobat における解放済みメモリを使用する脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002451.html
European Union Security Challenge (Campus Party 2010)
http://isc.sans.org/diary.html?storyid=8086
+ Microsoft Internet Explorer Unspecified Information Disclosure Vulnerability
http://www.securityfocus.com/bid/37950
- Microsoft IE 6&7 Crash Exploit
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00234.html
http://www.exploit-db.com/exploits/11268
SUN ALERT WEEKLY SUMMARY REPORT - Week of 17-Jan-2010 to 23-Jan-2010
http://sunsolve.sun.com/search/document.do?assetkey=1-66-276171-1
SUN ALERT WEEKLY SUMMARY REPORT - Week of 10-Jan-2010 to 16-Jan-2010
http://sunsolve.sun.com/search/document.do?assetkey=1-66-276170-1
HPSBMA02502 SSRT090171 rev.1 - HP OpenView Storage Data Protector, Local Unauthorized Access
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01992642&docLocale=en&admit=109447626+1264554199867+28353475
HPSBMA02477 SSRT090177 rev.4 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01926980
Samba 3.5.0rc2 Available for Download
http://news.samba.org/releases/3.5.0rc2/
http://wiki.samba.org/index.php/Release_Planning_for_Samba_3.5
Linux Kernel release: 2.6.27.45-rc1
http://www.linux.org/news/2010/01/26/0001.html
Independent Researcher : Setting arbitrary Personas without user interaction in Firefox 3.6
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31599
Secunia : Google Chrome Pop-Up Block Menu Handling Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31593
Debian : New python packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31592
Digital Defense Inc. : F2L-3000 files2links SQL Injection Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31594
Independent Researcher : FWD: LedgerSMB Security Advisory: Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31598
Mandriva : php-pear-Mail
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31591
[SECURITY] [DSA 1978-1] New phpgroupware packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00242.html
Netsupport gateway remote DoS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00240.html
[USN-890-4] PyXML vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00247.html
Paper: Weaning the Web off of Session Cookies
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00237.html
More information on CVE-2009-3580
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00243.html
Cross-Site Scripting vulnerability in 3D Cloud for Joomla
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00238.html
[ MDVSA-2010:026 ] openldap
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00241.html
[security bulletin] HPSBMA02477 SSRT090177 rev.4 - HP OpenView Network Node Manager (OV NNM), Re
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00236.html
[IBM Datapower XS40] Denial of Service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00235.html
Microsoft IE 6&7 Crash Exploit
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00234.html
Setting arbitrary Personas without user interaction in Firefox 3.6
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00230.html
Secunia Research: Google Chrome Pop-Up Block Menu Handling Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00229.html
[SECURITY] [DSA-1977-1] New python packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00228.html
Web経由のウイルス感染、4割以上は「ガンブラー」亜種
「Troj/JSRedir-AK」の検出数が1カ月で最多、英ソフォスが報告
http://itpro.nikkeibp.co.jp/article/NEWS/20100127/343820/?ST=security
VMware vSphere Hardening Guide Draft posted for public review
http://isc.sans.org/diary.html?storyid=8080
e107 CMS system website compromised
http://isc.sans.org/diary.html?storyid=8083
bozohttpd "parse_request()" Vulnerability
http://secunia.com/advisories/38343/
Rising Antivirus Device Drivers IOCTL Handling Vulnerabilities
http://secunia.com/advisories/38335/
Support Incident Tracker LDAP Authentication Security Bypass
http://secunia.com/advisories/38329/
XenServer Realtek 8169 Driver Large Packet Processing Vulnerability
http://secunia.com/advisories/38326/
Debian update for python2.4 and python2.5
http://secunia.com/advisories/38324/
OCS Inventory NG Multiple Vulnerabilities
http://secunia.com/advisories/38311/
Publique! "sid" SQL Injection Vulnerability
http://secunia.com/advisories/38302/
Joomla JBDiary Component Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/38282/
SiSoftware Sandra "sandra.sys" IOCTL Handling Vulnerabilities
http://secunia.com/advisories/38212/
Google Chrome Multiple Vulnerabilities
http://secunia.com/advisories/37769/
Citrix XenServer Packet Processing Flaw in Realtek 8169 Driver Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Jan/1023507.html
Google Chrome Bugs Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Information.
http://securitytracker.com/alerts/2010/Jan/1023506.html
Publique! CMS and SQL Injection Vulnerabilities
http://www.securiteam.com/unixfocus/5FP3I1P0AO.html
Files2Links F2L-3000 SQL Injection Vulnerability
http://www.securiteam.com/unixfocus/5DP3G1P0AA.html
LedgerSMB Multiple Vulnerabilities
http://www.securiteam.com/securitynews/5EP3H1P0AU.html
Citrix XenServer RealTek 8169 Driver Memory Corruption Vulnerability
http://www.vupen.com/english/advisories/2010/0219
Rising Antivirus Drivers MultiplePrivilege Escalation Vulnerabilities
http://www.vupen.com/english/advisories/2010/0218
Google Chrome Memory Corruption and Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2010/0217
Oracle WebLogic Server Node Manager Missing Authentication Issue
http://www.vupen.com/english/advisories/2010/0216
Internet Explorer 6/7 - Local crash
http://www.exploit-db.com/exploits/11268
Winamp 5.572 Exploit - SEH
http://www.exploit-db.com/exploits/11267
South River Technologies WebDrive Service Bad Security Descriptor Local Privilege Escalation
http://www.exploit-db.com/exploits/11264
AIC Audio Player 1.4.1.587 Local Crash PoC
http://www.exploit-db.com/exploits/11260
phpGroupWare Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/35761
Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36097
Expat Unspecified XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37203
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -07 -08 -09 and -11 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/33990
SilverStripe HTML Injection and Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/37923
OpenLDAP X.509 Certificate NULL Character Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36844
boastMachine Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/37940
Authentium SafeCentral Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37939
Joomla! JBDiary Component Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37936
Joomla! JbPublishDownFp Component 'cid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37932
Joomla! Mochigames Component 'cid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37931
HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
http://www.securityfocus.com/bid/37046
Rising Antivirus Multiple IOCTL Request Handling Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/37951
IBM SolidDB 'solid.exe' Denial of Service Vulnerability
http://www.securityfocus.com/bid/37053
Google Chrome prior to 4.0.249.78 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/37948
Adobe Reader and Acrobat DLL Loading in 3D Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37761
Adobe Reader and Acrobat Forms Data Format Remote Security Bypass Vulnerability
http://www.securityfocus.com/bid/37763
Adobe Reader and Acrobat JpxDecode Memory Corruption Vulnerability
http://www.securityfocus.com/bid/37757
Adobe Reader and Acrobat U3D Support Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37756
Adobe Flash Player and AIR URI Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35902
Adobe Reader and Acrobat U3D Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37758
NOS Microsystems getPlus Help ActiveX Control Stack Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/37759
Adobe Reader and Acrobat 'newplayer()' JavaScript Method Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37331
Adobe Reader and Acrobat Null Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/37760
ISC BIND 9 DNSSEC Bogus NXDOMAIN Response Remote Cache Poisoning Vulnerability
http://www.securityfocus.com/bid/37865
Linux Kernel RTL8169 NIC Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35281
Python Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/30491
NetSupport Manager Denial of Service Vulnerability
http://www.securityfocus.com/bid/37959
Joomla! 3D Cloud 'tagcloud.swf' Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/37958
TinyBrowser Joomla! Component 'folders.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/37956
South River Technologies WebDrive Security Descriptor Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37955
IBM Datapower XS40 Malformed ICMP Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/37952
Microsoft Internet Explorer Unspecified Information Disclosure Vulnerability
http://www.securityfocus.com/bid/37950
0 件のコメント:
コメントを投稿