+ Two Security Vulnerabilities in GNU tar (see gtar(1)) May Lead to Files Being Overwritten, Execution of Arbitrary Code, or a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-273551-1
Postfix 2.8 Snapshot 20100323
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20100323.HISTORY
Postfix legacy release 2.6.6, 2.5.10 and 2.4.14
http://www.postfix.org/announcements/postfix-2.6.6.html
Trend Micro Network VirusWall Enforcer 1500i / 3500i Patch 1 および移行ツール公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1386
Trend Micro Threat Mitigator 2.5 Service Pack 1 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1387
ALERT WEEKLY SUMMARY REPORT
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275470-1
JVNDB-2009-002523 VMware Fusion の vmx86 のカーネル拡張における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002523.html
JVNDB-2009-002522 VMware Fusion の vmx86 のカーネル拡張における権限昇格の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002522.html
JVNDB-2009-002521 複数の VMware 製品の VMnc media コーデックにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002521.html
JVNDB-2009-002520 複数の VMware 製品の VMnc media コーデックにおけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002520.html
JVNDB-2009-002519 VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002519.html
JVNDB-2009-002518 複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002518.html
JVNDB-2009-002517 複数の VMware 製品の仮想マシン表示機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002517.html
JVNDB-2009-002516 複数の VMware 製品の仮想マシン通信インターフェイスにおける権限昇格の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002516.html
".sys" Directories Delivering Driveby Downloads
http://isc.sans.org/diary.html?storyid=8482
Lexmark Laser Printer Buffer Overflow in Processing PJL Data Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Mar/1023735.html
Lexmark Laser Printer FTP Service Flood Protection Error Lets Remote Users Deny Service
http://securitytracker.com/alerts/2010/Mar/1023734.html
Kerberos SPNEGO GSS-API Mechanism Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2010/Mar/1023733.html
+ Postfix 2.5 Patchlevel 10, 2.4 Patchlevel 14 released
http://mirror.postfix.jp/postfix-release/official/postfix-2.5.10.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-2.4.14.HISTORY
+ [FreeBSD-Announce] FreeBSD 7.3-RELEASE Available
http://www.freebsd.org/releases/7.3R/announce.html
http://www.freebsd.org/releases/7.3R/relnotes.html
[ANNOUNCE] Apache Directory Server 1.5.6 released !
http://directory.apache.org/apacheds/1.5/downloads.html
[ANNOUNCE] 2nd set of PostgreSQL 9.0 Alpha4 RPMs are available.
http://developer.postgresql.org/pgdocs/postgres/release-9-0.html
HPSBOV02506 SSRT090244 rev.1 - HP Secure Web Server for OpenVMS (based on Apache) CSWS, Remote Denial of Service (DoS), Unauthorized Disclosure of Information, Unauthorized Modification of Information
http://www13.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c02002308
HPSBOV02497 SSRT090245 rev.1 - HP TCP/IP Services for OpenVMS Running NTP, Remote Execution of Arbitrary Code, Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01961959
VMware ESX and ESXi 3.5 Comparison
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1006543&sliceId=1&docTypeID=DT_KB_1_1
Using the VMware SCSI Disk Driver for Windows Guest Operating Systems
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1006956&sliceId=1&docTypeID=DT_KB_1_1
Overview of VMware Tools
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=340&sliceId=1&docTypeID=DT_KB_1_1
Independent Researcher : Vulnerability Astaro Security Linux v5
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32066
Mandriva : libpng
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32063
Mandriva : cpio
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32064
Safari browser port blocking bypassed by integer overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00186.html
MITKRB5-SA-2010-002 denial of service in SPNEGO [CVE-2010-0628 VU#839413]
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00188.html
[DSECRG-09-064] SAP GUI - Insecure method, code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00180.html
[ MDVSA-2010:065 ] cpio
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00187.html
[ MDVSA-2010:064 ] libpng
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00175.html
Vulnerability Astaro Security Linux v5
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00179.html
[HITB-Announce] HITBSecConf2009 - Malaysia Videos Released!
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00184.html
[ MDVSA-2010:063 ] libpng
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00171.html
Aris AGX agXchange ESM Cross Site Scripting Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00189.html
Vulnerabilities in CaptchaSecurityImages
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00183.html
{PRL} Lexmark Multiple Laser Printer Remote Stack Overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00173.html
[SECURITY] [DSA 2021-1] New spamass-milter packages fix remote command execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00177.html
CFP - GameSec 2010 - Conference on Decision and Game Theory for Security
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00169.html
REMINDER: Month of PHP Security 2010 - CALL FOR PAPERS - Only 3 weeks left
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00174.html
MX Simulator Server 2010-02-06 Remote Buffer Overflow PoC
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00168.html
[CORELAN-10-015] - Remote Help 0.0.7 Httpd DoS (Format String)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00190.html
IE 6.0 - Local Crash Exploit
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-03/msg00178.html
The Top 10 Riskiest US Cities for Cybercrime
http://isc.sans.org/diary.html?storyid=8476
Mozilla Firefox Heap Overflow in WOFF Decoder Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Mar/1023732.html
Fedora update for qt
http://secunia.com/advisories/39094/
Qt WebKit Multiple Vulnerabilities
http://secunia.com/advisories/39091/
OpenPage "id" SQL Injection Vulnerability
http://secunia.com/advisories/39090/
RepairShop2 "prod" Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/39043/
WordPress Password Protection Weakness
http://secunia.com/advisories/39040/
Cafu Denial of Service and Format String Vulnerabilities
http://secunia.com/advisories/39054/
Mxserver Packet Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/39051/
SUSE update for kernel
http://secunia.com/advisories/39102/
Fedora update for asterisk
http://secunia.com/advisories/39096/
vBulletin "query" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/39047/
Vulnerability Note VU#964549: Mozilla WOFF decoder integer overflow
http://www.kb.cert.org/vuls/id/964549
Mozilla Firefox WOFF Font Processing Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0684
Debian Security Update Fixes spamass-milter Code Injection Vulnerability
http://www.vupen.com/english/advisories/2010/0683
Mandriva Security Update Fixes Libpng Memory Disclosure and DoS
http://www.vupen.com/english/advisories/2010/0682
MX Simulator Server Remote Buffer Overflow PoC
http://www.exploit-db.com/exploits/11857
uhttp Server Path Traversal Vulnerability
http://www.exploit-db.com/exploits/11856
MediaWiki 'thumb.php' Security Bypass Vulnerability
http://www.securityfocus.com/bid/38617
MediaWiki 'CSS validation' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38621
Multiple Vendor HTML Form Protocol Vulnerability
http://www.securityfocus.com/bid/3181
Heimdal Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/38868
Astaro Security Linux 'index.fpl' Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/38893
OpenCart 'page' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/38605
Linux Kernel 'do_pages_move()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38144
Linux Kernel 'drivers/connector/connector.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/38058
Linux Kernel PI Futex Invalid Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/38165
Linux Kernel CVE-2010-0291 'mmap()' and 'mremap()' Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/37906
Linux Kernel 'ebtables' Security Bypass Vulnerability
http://www.securityfocus.com/bid/37762
Linux Kernel 'fasync_helper()' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37806
Linux Kernel 'print_fatal_signal()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/37724
Linux Kernel 'net/ipv6/ip6_output.c' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/38185
Uiga Fan Club, Personal Portal and Business Portal 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/38464
dpkg-source Directory Traversal Vulnerability
http://www.securityfocus.com/bid/38654
Mozilla Firefox WOFF Decoder Integer Overflow Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38298
Webmatic HTML Injection and Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/38874
VLC Media Player ASS File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37832
Libpng 'png_decompress_chunk()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/38478
Opera Web Browser 'Content-Length' Header Integer Overflow Vulnerability
http://www.securityfocus.com/bid/38519
WebKit HTML Elements Callback Use-After-Free Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38686
WebKit CSS 'format()' Arguments Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38684
WebKit Cross-Origin Stylesheet Request Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38692
WebKit Nested HTML Tags Use-After-Free Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38685
WebKit HTML Image Element Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38691
WebKit Right-to-Left Displayed Text Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38689
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
Asterisk CIDR Notation in Access Rule Remote Security Bypass Vulnerability
http://www.securityfocus.com/bid/38424
Asterisk Dialplan '${EXTEN}' Variable String Injection Vulnerability
http://www.securityfocus.com/bid/38314
Asterisk T.38 'FaxMaxDatagram' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/38047
Libpng 1-bit Interlaced Images Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35233
Multiple SpringSource Products Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/38913
Joomla! 'com_properties' Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/38912
SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability
http://www.securityfocus.com/bid/38911
Joomla! 'com_gds' Component 'sid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/38910
Kasseler CMS News Module 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/38909
phpAuthent 'useradd.php' Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/38908
RepairShop 2 'prod' Parameter Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/38907
Multiple Lexmark Laser Printers FTP Service Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/38906
Secure Portal and Secure Dept Portal Page Restriction Security Bypass Vulnerability
http://www.securityfocus.com/bid/38905
MIT Kerberos 'gss_accept_sec_context()' Denial Of Service Vulnerability
http://www.securityfocus.com/bid/38904
Multiple Lexmark Laser Printers PJL Processing Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/38901
Stack 'action' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/38899
Cafu Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/38897
agXchange ESM 'ucquerydetails.jsp' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/38896
Lussumo Vanilla 'definitions.php' Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/38889
0 件のコメント:
コメントを投稿