Trend Micro LeakProof 5.0 Patch 2 (ビルド1375) 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1398
Linked into scams?
http://isc.sans.org/diary.html?storyid=8650
Debian update for phpmyadmin
http://secunia.com/advisories/39503/
3Com H3C S9500E / S12500 Switches Denial of Service
http://secunia.com/advisories/39513/
IBM BladeCenter Management Module Denial of Service
http://secunia.com/advisories/39455/
JVNVU#943657 複数の TCP の実装におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/cert/JVNVU943657/index.html
+ OpenSSH 5.5/5.5p1 released
http://www.openssh.com/txt/release-5.5
+ Critical Patch Update - April 2010
http://www.oracle.com/technology/global/jp/security/100416_90/top.html
- IBM Lotus Notes SURunAs Utility Password Disclosure Lets Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2010/Apr/1023892.html
http://secunia.com/advisories/39507/
http://www.securityfocus.com/bid/39525
ALERT WEEKLY SUMMARY REPORT
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275470-1
A Race Condition Security Vulnerability in the OpenSolaris "automake" Utility may Allow Modification of Package Files or Execution of Arbitrary Code
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275650-1
Oracle Security Alert for CVE-2010-0886 was released on April 15th, 2010.
http://sunsolve.sun.com/search/document.do?assetkey=1-66-279590-1
sk44584: Check Point response to "Jedi Packet Trick" (CVE-2010-0104)
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk44584&src=securityAlerts
NTP 4.2.6p2-RC1
http://archive.ntp.org/ntp4/ChangeLog-stable-rc
Corelan Security Team : Archive Searcher .zip Stack Overflow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32344
Ubuntu Security Notice : irssi vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32335
Bonsai : CVE-2010-0432 Apache OFBiz Multiple XSS Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32343
Debian : New ejabberd packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32336
Digital Security Research Group : VMware Remoute Console - format string
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32351
Digital Security Research Group : IBM BladeCenter Management Module - DoS vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32352
Mandriva : Security Announce kdebase
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32331
Mandriva : Security Announce openoffice.org
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32332
MustLive : Vulnerability in CB Captcha for Joomla and Mambo
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32342
Ubuntu Security Notice : Sudo vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32333
Ubuntu Security Notice : CMake vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32334
Mac OS Xに脆弱性、Appleがセキュリティアップデート公開
http://itpro.nikkeibp.co.jp/article/NEWS/20100419/347238/?ST=security
メールの9割は「迷惑メール」、そのうち2割弱は「詐欺メール」
米シマンテックが2010年3月の迷惑メール動向、「件名は『空白』が最多」
http://itpro.nikkeibp.co.jp/article/NEWS/20100419/347237/?ST=security
チェック・ポイントがDLP市場に参入、メールやWebアクセスでの情報漏洩を防ぐ
http://itpro.nikkeibp.co.jp/article/NEWS/20100416/347202/?ST=security
JVNDB-2010-001282 Apple Mac OS X の xar におけるパッケージ署名の検証処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001282.html
JVNDB-2010-001281 Apple Mac OS X の Wiki サーバにおけるコンテンツを公開される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001281.html
JVNDB-2010-001280 Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001280.html
JVNDB-2010-001279 Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001279.html
JVNDB-2010-001278 Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001278.html
JVNDB-2009-002528 Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002528.html
JVNDB-2009-002527 Ruby on Rails におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002527.html
JVNDB-2009-002526 Ruby on Rails のダイジェスト認証における認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002526.html
JVNDB-2010-001277 Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001277.html
JVNDB-2010-001276 Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001276.html
JVNDB-2010-001275 Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001275.html
JVNDB-2010-001274 Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001274.html
JVNDB-2010-001273 Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001273.html
PUBLIC ADVISORY: 04.15.10: Multiple Vendor AgentX++ Stack Buffer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=867
PUBLIC ADVISORY: 04.15.10: Multiple Vendor AgentX++ Integer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=868
[USN-929-1] irssi vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00144.html
[ MDVSA-2010:075 ] openoffice.org
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00150.html
[USN-890-6] CMake vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00149.html
Hackproofing Oracle Financials 11i & R12
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00148.html
[ MDVSA-2010:074 ] kdebase
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00146.html
[SECURITY] [DSA 2033-1] New ejabberd packages fix denial of service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00145.html
[USN-928-1] Sudo vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00143.html
Some NetSol hosted sites breached
http://isc.sans.org/diary.html?storyid=8647
MS10-021: Encountering A Failed WinXP Update
http://isc.sans.org/diary.html?storyid=8644
TeX Live "predospecial()" DVI Handling Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0901
Apache OFBiz Multiple Parameter Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/0900
Impreva SecureSphere Products Security Bypass Vulnerability
http://www.vupen.com/english/advisories/2010/0899
OpenBSD Security Update Fixes OpenSSL Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/0898
Ubuntu Security Update Fixes Irssi Security Bypass and DoS Issues
http://www.vupen.com/english/advisories/2010/0897
Ubuntu Security Update Fixes CMake Expat Denial of Service Issues
http://www.vupen.com/english/advisories/2010/0896
Ubuntu Security Update Fixes Sudo Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2010/0895
Debian Security Update Fixes ejabberd Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/0894
Mandriva Security Update Fixes OpenOffice Libtool Untrusted Path Issue
http://www.vupen.com/english/advisories/2010/0893
Mandriva Security Update Fixes KDE Display Manager Vulnerability
http://www.vupen.com/english/advisories/2010/0892
IBM Lotus Notes SURunAs.exe Password Disclosure Security Issue
http://secunia.com/advisories/39507/
Archive Searcher ZIP Archive Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/39450/
Ubuntu update for irssi
http://secunia.com/advisories/39449/
Debian update for ejabberd
http://secunia.com/advisories/39423/
Siestta Cross-Site Scripting and Local File Inclusion Vulnerabilities
http://secunia.com/advisories/39453/
gource Insecure Temporary Files Security Issue
http://secunia.com/advisories/39462/
Ubuntu update for cmake
http://secunia.com/advisories/39478/
Media in Spot CMS 'page' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39533
Apache OFBiz Multiple Cross Site Scripting and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/39489
IBM Lotus Notes 'SURunAs.exe' Insecure Password Storage Information Disclosure Vulnerability
http://www.securityfocus.com/bid/39525
Adobe Acrobat and Reader CVE-2010-0193 Denial of Service Vulnerability
http://www.securityfocus.com/bid/39524
Oracle Java SE and Java for Business Unspecified Vulnerabilities
http://www.securityfocus.com/bid/39492
Adobe Acrobat and Reader CLOD Mesh Declaration Block Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39521
Adobe Acrobat and Reader PNG Data Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39505
Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39507
Adobe Acrobat and Reader GIF Data Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39514
Microsoft Windows SMB Client Transaction Response Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39339
Adobe Acrobat and Reader JPEG Data Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39511
Oracle Java SE and Java for Business 'readMabCurveData()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39069
ejabberd 'client2server' Message Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/38003
RETIRED: Adobe Acrobat and Reader April 2010 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/39329
Microsoft Windows SMB Client Pool Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38093
Irssi Denial of Service and SSL Hostname Verification Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/39377
Zyke CMS 'login' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39536
gource Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/39529
Archive Searcher ZIP File Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39527
SIESTTA Local File Include and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/39526
Joomla! 'com_manager' Component 'Itemid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39519
0 件のコメント:
コメントを投稿