Adobe Reader および Acrobat の脆弱性(APSB10-02)について
http://www.ipa.go.jp/security/ciadr/vul/20100113-adobe.html
uTorrent HTTP Basic Authentication Processing Flaw in WebUI Lets Remote Users Deny Service
http://securitytracker.com/alerts/2010/Apr/1023818.html
Oracle Java SE and Java for Business Sound Component MIDI Stream Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39084
+ Linux Kernel "cifs_create()" NULL Pointer Dereference
http://secunia.com/advisories/39344/
+- Linux Kernel r128 NULL Pointer Dereference Vulnerability
http://secunia.com/advisories/39297/
+ Linux Kernel GFS/GFS2 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/39101
定期サーバメンテナンスのお知らせ(2010年4月16日)
http://www.trendmicro.co.jp/support/news.asp?id=1393
MustLive : Vulnerabilities in GunCMS and PhoenixCMS PHP Edition
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32219
Corelan Security Team : ZipScan 2.2c .zip file Stack BoF
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32217
Corelan Security Team : Zip Unzip v6 (.zip) 0day stack buffer overflow vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32218
Debian : New xulrunner packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32195
Debian : New netpbm-free packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32195
JVNVU#817433 複数の XML ライブラリの実装に脆弱性
http://jvn.jp/cert/JVNVU817433/index.html
JVN#87272440 Apache Tomcat におけるサービス運用妨害(DoS)の脆弱性
http://jvn.jp/jp/JVN87272440/index.html
JVN#63832775 Apache Tomcat における情報漏えいの脆弱性
http://jvn.jp/jp/JVN63832775/index.html
JVNVU#196617 Xpdf および poppler の JBIG2 データの処理における複数の脆弱性
http://jvn.jp/cert/JVNVU196617/index.html
[security bulletin] HPSBMA02490 SSRT090222 rev.2 - HP SOA Registry Foundation, Remote Unauthoriz
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00027.html
ZDI-10-061: Sun Java Runtime CMM readMabCurveData Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00038.html
ZDI-10-060: Sun Java Runtime Environment MixerSequencer Invalid Array Index Remote Code Exec
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00037.html
ZDI-10-059: Sun Java Runtime Environment JPEGImageEncoderImpl Remote Code Execution Vulnerab
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00047.html
ZDI-10-058: Apple Mac OS X ImageIO Framework JPEG2000 Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00041.html
ZDI-10-057: Sun Java Runtime Environment JPEGImageDecoderImpl Remote Code Execution Vulnerab
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00048.html
ZDI-10-056: Sun Java Runtime Environment Trusted Methods Chaining Remote Code Execution Vuln
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00031.html
ZDI-10-055: Sun Java Runtime Environment Mutable InetAddress Socket Policy Violation Vulnera
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00046.html
ZDI-10-054: Sun Java Runtime Environment JPEGImageReader stepX Remote Code Execution Vulnera
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00033.html
[SECURITY] [DSA 2028-1] New xpdf packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00044.html
ZDI-10-053: Sun Java Runtime Environment MIDI File metaEvent Remote Code Execution Vulnerabi
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00030.html
ZDI-10-052: Sun Java Runtime Environment XNewPtr Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00043.html
ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vuln
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00040.html
Apple Safari <= Tag (heap spray) Remote Buffer Overflow Exploit (osX) http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00029.html
[SECURITY] [DSA 2027-1] New xulrunner packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00028.html
ZDI-10-050: Mozilla Firefox nsTreeSelection EventListener Remote Code Execution Vulnerabilit
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00042.html
ZDI-10-049: Mozilla Firefox PluginArray nsMimeType Dangling Pointer Remote Code Execution Vu
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00039.html
Vulnerabilities in HoloCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00036.html
ZDI-10-047: Mozilla Firefox libpr0n imgContainer Bits-Per-Pixel Change Remote Code E
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00035.html
ZDI-10-046: Mozilla Firefox Web Worker Array Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00034.html
ZDI-10-045: Apple QuickTime MPEG-1 genl Atom Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00032.html
ZDI-10-044: Apple QuickTime FLI LinePacket Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00026.html
ZDI-10-043: Apple QuickTime FlashPix NumberOfTiles Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00025.html
ZDI-10-042: Apple QuickTime MediaVideo Compressor Name Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00024.html
ZDI-10-041: Apple QuickTime QDM2/QDCA Atom Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00023.html
ZDI-10-040: Apple QuickTime RLE Bit Depth Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00022.html
ZDI-10-039: Apple OS X Internet Enabled Disk Image Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00021.html
ZDI-10-038: Apple QuickTime QDMC/QDM2 Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00020.html
ZDI-10-037: Apple QuickTime MJPEG Sample Dimensions Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00019.html
ZDI-10-036: Apple QuickTime H.263 PictureHeader Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00018.html
ZDI-10-035: Apple QuickTime genl Atom Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00017.html
ZDI-10-034: Microsoft Internet Explorer Tabular Data Control ActiveX Remote Code Execution V
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00016.html
ZDI-10-033: Microsoft Internet Explorer TIME2 Behavior Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00015.html
[SECURITY] [DSA 2026-1] New netpbm-free packages fix denial of service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00014.html
Vulnerability Centreon IT & Network Monitoring v2.1.5
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00013.html
Joomla! SVMap Component "controller" Local File Inclusion Vulnerability
http://secunia.com/advisories/39350/
Advenced Management For Services Sites Security Bypass
http://secunia.com/advisories/39252/
Slackware update for mozilla-thunderbird
http://secunia.com/advisories/39336/
Joomla! LoginBox Pro Component "view" Local File Inclusion Vulnerability
http://secunia.com/advisories/39349/
uTorrent Web UI Basic Authorization Header Parsing Denial of Service
http://secunia.com/advisories/39192/
Joomla! Magic Updater Component "controller" Local File Inclusion Vulnerability
http://secunia.com/advisories/39348/
Linux Kernel "cifs_create()" NULL Pointer Dereference
http://secunia.com/advisories/39344/
Fedora update for seamonkey
http://secunia.com/advisories/39302/
Linux Kernel r128 NULL Pointer Dereference Vulnerability
http://secunia.com/advisories/39297/
Fedora update for hamlib
http://secunia.com/advisories/39347/
Ham Radio Control Libraries libtool Search Path Security Issue
http://secunia.com/advisories/39299/
Zip Unzip Archive Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/39280/
ZipScan Archive Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/39281/
Munkyscripts Simple Gallery "cid" SQL Injection Vulnerability
http://secunia.com/advisories/39309/
Solutive CMS Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/39319/
Joomla redTWITTER Component "view" File Inclusion Vulnerability
http://secunia.com/advisories/39342/
MassMirror Uploader "MM_ROOT_DIRECTORY" File Inclusion Vulnerabilities
http://secunia.com/advisories/39314/
Uiga Proxy "content" File Inclusion Vulnerability
http://secunia.com/advisories/39313/
eZip Wizard Archive Unpacking Buffer Overflow Vulnerability
http://secunia.com/advisories/39169/
PolicyKit "pkexec" File Existence Disclosure Weakness
http://secunia.com/advisories/39149/
Profi Einzelgebots Auktions System "id_auk" SQL Injection Vulnerability
http://secunia.com/advisories/39196/
Nodesforum Multiple File Inclusion Vulnerabilities
http://secunia.com/advisories/39311/
AjaXplorer Multiple Unspecified Vulnerabilities
http://secunia.com/advisories/39331/
Tcpdf HTML "tcpdf" Tag Processing Vulnerability
http://secunia.com/advisories/39277/
Joomla! JP Jobs Component "id" SQL Injection Vulnerability
http://secunia.com/advisories/39325/
Foxit Reader Embedded Program Execution Vulnerability
http://secunia.com/advisories/39291/
Joomla! Picasa Component "controller" Local File Inclusion Vulnerability
http://secunia.com/advisories/39338/
Vor und Ruckwarts Auktions System "id_auk" SQL Injection Vulnerability
http://secunia.com/advisories/39273/
Joomla! redSHOP Component "view" Local File Inclusion Vulnerability
http://secunia.com/advisories/39343/
VMware ESX Server 4 Update for samba and acpid
http://secunia.com/advisories/39147/
VMware vMA Samba and acpid Multiple Vulnerabilities
http://secunia.com/advisories/39162/
VMware ESX Server Samba Multiple Vulnerabilities
http://secunia.com/advisories/39218/
Debian update for netpbm-free
http://secunia.com/advisories/39268/
Debian update for xulrunner
http://secunia.com/advisories/39308/
Fedora update for viewvc
http://secunia.com/advisories/39301/
VMware Security Update Fixes Samba and acpid Vulnerabilities
http://www.vupen.com/english/advisories/2010/0801
Foxit Reader Embedded Executable Code Injection Vulnerability
http://www.vupen.com/english/advisories/2010/0800
Zabbix "user" Parameter Handling Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2010/0799
Fedora Security Update Fixes Hamlib Libtool Untrusted Path Issue
http://www.vupen.com/english/advisories/2010/0798
Fedora Security Update Fixes ViewVC Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2010/0797
Fedora Security Update Fixes SeaMonkey Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0796
Fedora Security Update Fixes krb5 Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/0795
Fedora Security Update Fixes Fcron File Disclosure Vulnerability
http://www.vupen.com/english/advisories/2010/0794
Fedora Security Update Fixes Trac Ticket Status Manipulation Issue
http://www.vupen.com/english/advisories/2010/0793
Fedora Security Update Fixes Moodle phpCAS Cross Site Scripting
http://www.vupen.com/english/advisories/2010/0792
Fedora Security Update Fixes Libnids and Dsniff DoS Vulnerability
http://www.vupen.com/english/advisories/2010/0791
Fedora Security Update Fixes Thunderbird and Sunbird Vulnerabilities
http://www.vupen.com/english/advisories/2010/0790
Fedora Security Update Fixes ikiwiki Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2010/0789
Fedora Security Update Fixes IMP Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/0788
Fedora Security Update Fixes Firefox and Xulrunner Vulnerabilities
http://www.vupen.com/english/advisories/2010/0787
Fedora Security Update Fixes Horde Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/0786
Fedora Security Update Fixes Asterisk Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/0785
Slackware Security Update Fixes SeaMonkey Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0784
Slackware Security Update Fixes Firefox Code Execution Vulnerability
http://www.vupen.com/english/advisories/2010/0783
Slackware Security Update Fixes Thunderbird Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0782
Debian Security Update Fixes Xulrunner Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/0781
Debian Security Update Fixes NetPBM Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0780
Xpdf JBIG2 Processing Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34568
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
GNU Libtool 'libltdl' Library Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37128
Open Handset Alliance Android Screen Lock Security Bypass Vulnerability
http://www.securityfocus.com/bid/37723
iSCSI Enterprise Target and tgt Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/39127
Oracle Java SE and Java for Business ImageIO 'JPEGImageReader' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39067
Snipe Gallery Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/39099
Oracle Java SE and Java for Business 'readMabCurveData()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39069
Linux Kernel GFS/GFS2 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/39101
Novell Netware FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/39041
Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39077
DynPG CMS Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/39168
Apple Safari BMP Image Uninitialized Memory Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38676
Apple Mac OS X ImageIO Component JP2 File Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39171
Oracle Java SE and Java for Business 'XNewPtr()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39083
Oracle Java Runtime Environment 'JPEGImageEncoderImpl' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39062
FeedDemon 'outline' Tag Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/33630
Oracle Java SE and Java for Business CVE-2010-0849 Remote Java 2D Vulnerability
http://www.securityfocus.com/bid/39073
Oracle Java SE and Java for Business JRE Trusted Method Chaining Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39065
Oracle Java SE and Java for Business CVE-2010-0095 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/39086
Microsoft Windows SMB Pathname Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/38049
Oracle Java SE and Java for Business CVE-2010-0094 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/39075
Linux Kernel 'sock_sendpage()' NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36038
ISC BIND 9 Remote Dynamic Update Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/35848
Mozilla Firefox WOFF Decoder Integer Overflow Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38298
VariCAD 2010 'DWB' File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/38815
Multiple Vendors Email Clients DNS prefetching Domain Name Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38046
ViewVC Regular Expression Search Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/39053
Microsoft Internet Explorer 'Tabular Data Control' ActiveX Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39025
ZipCentral ZIP File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/18160
eZip Wizard Zip File Stack Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34044
Sun Java System Web Server WebDAV Unspecified Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37874
Libnids 'ip_fragment.c' Null Pointer Deference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39142
Oracle Java SE and Java for Business CVE-2010-0847 Remote Java 2D Vulnerability
http://www.securityfocus.com/bid/39071
Joomla! Picasa Component Local File Include Vulnerability
http://www.securityfocus.com/bid/39200
PolicyKit 'pkexec' File Existence Information Disclosure Weakness
http://www.securityfocus.com/bid/39198
Joomla! 'com_jp_jobs' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39191
Cache::Cache Perl Module '/tmp' Insecure File Permissions Vulnerabilities
http://www.securityfocus.com/bid/39189
HoloCMS Denial of Service Vulnerability and CAPTCHA Bypass Vulnerability
http://www.securityfocus.com/bid/39188
Joomla! 'com_menu' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39184
0 件のコメント:
コメントを投稿