Windows Vista(R) RTM / Windows(R) XP Service Pack 2 (SP2) / Windows 2000製品のサポート終了について
http://www.microsoft.com/japan/presspass/detail.aspx?newsid=3824
ウイルスバスター 月額版 シリアル番号の発行およびオンラインユーザ登録が出来ない現象について
http://www.trendmicro.co.jp/support/news.asp?id=1383
InterScan VirusWall スタンダードエディション 7.0 Windows版 Critical Patch (ビルド1307) 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1382
プレス発表
暗号モジュール試験及び認証制度における試験機関の新規承認について
http://www.ipa.go.jp/about/press/20100312.html
JVNDB-2009-002514 APC Switched Rack PDU におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002514.html
JVNDB-2009-002513 APC Network Management Card におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002513.html
JVNDB-2009-002512 APC Network Management Card におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002512.html
JVNDB-2010-001147 JP1/Cm2/Network Node Manager のリモートコンソールにおけるファイルパーミッションの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001147.html
JVNDB-2010-001146 Panda Security ActiveScan におけるコンポーネントのデジタル署名を検証しない問題
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001146.html
JVNDB-2010-001022 OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001022.html
JVNDB-2009-001874 OpenSSL の dtls1_retrieve_buffered_fragment 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001874.html
JVNDB-2009-001873 OpenSSL の dtls1_process_out_of_seq_message 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001873.html
JVNDB-2009-001872 OpenSSL の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001872.html
JVNDB-2008-001807 OpenSSL の zlib_stateful_init 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001807.html
Apple Safari WebKit Flaws Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Mar/1023708.html
Apple Safari Bugs Let Remote Users Cause Arbitrary Code to Be Executed
http://securitytracker.com/alerts/2010/Mar/1023706.html
Skype URI Validation Flaw Lets Remote Users Injection Commands
http://securitytracker.com/alerts/2010/Mar/1023705.html
Apache 'mod_isapi' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38494
eGroupware Cross Site Scripting and Remote Command Execution Vulnerabilities
http://www.securityfocus.com/bid/38609
+ A Security Vulnerability in the ntp Daemon (xntpd(1M)) May Lead to a Denial of the Solaris Network Time Protocol(NTP) Service
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275590-1
+ Tomcat 6.0.26 Released
http://tomcat.apache.org/tomcat-6.0-doc/changelog.html
+ SA38916: Microsoft Windows HTML Help File Processing Vulnerability
http://secunia.com/advisories/38916/
[ANNOUNCE] PostGIS 1.4.2 and 1.5.1 Released
http://postgis.org/download
Solaris Daylight Saving Time (DST) Update (Jan-Feb-Mar 2010)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-276190-1
Upgrade offer to be issued to Firefox 3 and Firefox 3.5 users
http://developer.mozilla.org/devnews/index.php/2010/03/11/upgrade-offer-to-be-issued-to-firefox-3-and-firefox-3-5-users/
Install guidance for WebSphere MQ File Transfer Edition fixpack v7.0.2.1
http://www-01.ibm.com/support/docview.wss?uid=swg21424046
RHBA-2010:0135-1: pam bug fix update
http://rhn.redhat.com/errata/RHBA-2010-0135.html
RHEA-2010:0136-1: new packages: kmod-be2net-rhel5u4-2.101.377r-1.0
http://rhn.redhat.com/errata/RHEA-2010-0136.html
Slackware Linux : pidgin
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31979
Ubuntu Security Notice : dpkg vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31978
Debian : New kvm packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31980
Debian : New dpkg packages fix path traversal
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31981
「CC評価のための開発証拠資料作成とレビュー手法に関する説明会」
http://www.ipa.go.jp/security/event/2009/cc_review/cc_semi_20100415.html
[USN-909-1] dpkg vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00101.html
Skype URI Handler Input Validation
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00102.html
[ MDVSA-2010:060 ] squid
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00104.html
Vulnerabilities in Abton
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00103.html
Multiple vulnerabilities in SUPERAntiSpyware and Super Ad Blocker
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00106.html
PUBLIC ADVISORY: 03.11.10: Multiple Vendor WebKit HTML Element Use After Free Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=863
Cert write up on Skype IMBot Logic and Functionality.
http://isc.sans.org/diary.html?storyid=8407
Interesting SKYPE SPIM.
http://isc.sans.org/diary.html?storyid=8413
Vulnerability Note VU#280613: Apache mod_isapi module library unload results in orphaned callback pointers
http://www.kb.cert.org/vuls/id/280613
Microsoft Windows HTML Help File Processing Vulnerability
http://secunia.com/advisories/38916/
ViewVC Query View Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/38895/
Drupal TinyMCE Module Script Insertion Vulnerability
http://secunia.com/advisories/38913/
Skype URI Handling "/Datapath" Vulnerability
http://secunia.com/advisories/38908/
SUPERAntiSpyware Multiple Vulnerabilities
http://secunia.com/advisories/38917/
Super Ad Blocker Multiple Vulnerabilities
http://secunia.com/advisories/38884/
ispCP Omega "net2ftp_globals[application_skinsdir]" File Inclusion
http://secunia.com/advisories/38904/
Campsite Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/38864/
Drupal Monthly Archive by Node Type Module Security Bypass
http://secunia.com/advisories/38911/
Debian update for kvm
http://secunia.com/advisories/38901/
Debian update for dpkg
http://secunia.com/advisories/38907/
Ubuntu update for dpkg
http://secunia.com/advisories/38880/
Ubuntu update for apache2
http://secunia.com/advisories/38885/
GNU Cpio "rmt" Buffer Overflow Vulnerability
http://secunia.com/advisories/38869/
GNU Tar "rmt" Buffer Overflow Vulnerability
http://secunia.com/advisories/38836/
XnView Integer Overflow in Processing DICOM Image Files Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Mar/1023704.html
GNU Tar Heap Overflow in rmt_read__() Lets Remote Users Cause Arbitrary Code to Be Executed
http://securitytracker.com/alerts/2010/Mar/1023703.html
cpio Heap Overflow in rmt_read__() Lets Remote Users Cause Arbitrary Code to Be Executed
http://securitytracker.com/alerts/2010/Mar/1023702.html
Skype URI "/Datapath" Argument Handling Data Disclosure Vulnerability
http://www.vupen.com/english/advisories/2010/0588
Drupal Monthly Archive by Node Type Module Access Bypass Issue
http://www.vupen.com/english/advisories/2010/0587
Drupal TinyMCE Module Data Handling Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2010/0586
GNU Cpio "rmt" Client Implementation Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0585
GNU Tar "rmt" Client Implementation Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0584
XnView DICOM Image Parsing Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0583
shortCMS 'printview.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/38403
LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability
http://www.securityfocus.com/bid/35451
PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/15074
ncpfs Multiple Local Vulnerabilities
http://www.securityfocus.com/bid/38563
Reductive Labs Puppet '/tmp' Insecure File Permissions Vulnerabilities
http://www.securityfocus.com/bid/38474
Family Connections Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/37379
dpkg-source Directory Traversal Vulnerability
http://www.securityfocus.com/bid/38654
NTP mode 7 MODE_PRIVATE Packet Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37255
CUPS File Descriptors Handling Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37048
CUPS File Descriptors Handling Use-After-Free Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/38510
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
Apache 'mod_isapi' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38494
Samba 'CAP_DAC_OVERRIDE' File Permissions Security Bypass Vulnerability
http://www.securityfocus.com/bid/38606
Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/30560
Pidgin Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/38294
Microsoft Internet Explorer 'iepeers.dll' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38615
Apple Safari Prior to 4.0.5 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/38671
Joomla! 'com_blog' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/38668
ARTIS ABTON CMS Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/38658
AneCMS 'index.php' Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/38657
ATutor Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/38656
0 件のコメント:
コメントを投稿