Navicat version 9 is released.
http://www.postgresql.org/about/news.1201
Facebook、不審ログインの防止機能を導入
http://itpro.nikkeibp.co.jp/article/NEWS/20100514/348009/?ST=security
JVNTA10-131A Microsoft 製品における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNTA10-131A/index.html
HIPER - Oracle StorageTek HSC LMU May Not Respond to Requests or Indicate an Action is Complete
http://sunsolve.sun.com/search/document.do?assetkey=1-66-280190-1
EMS Data Comparer for PostgreSQL version 3.0 released
http://www.postgresql.org/about/news.1199
Mandriva : libxext
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32562
Secunia : KDE KGet metalink "name" Directory Traversal Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32579
Secunia : aria2 metalink "name" Directory Traversal Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32580
Secunia : KDE KGet Insecure File Operation Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32581
Ubuntu Security Notice : KDENetwork vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32563
Cisco : Multiple vulnerabilities in Cisco PGW Softswitch
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32564
「IPアドレススパム」が急増、対策製品の回避が目的
ドメイン名ではなくIPアドレスでURLを記述、複数サイトを経由する
http://itpro.nikkeibp.co.jp/article/Research/20100513/348004/?ST=security
JVNDB-2010-001229 OpenSSL における複数の関数に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001229.html
JVNDB-2010-001228 OpenSSL の kssl_keytab_is_available 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001228.html
JVNDB-2010-001227 OpenSSL の ssl3_get_record 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001227.html
JVNDB-2010-001022 OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001022.html
LinksAutomation Multiple Remote Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00121.html
XSS vulnerability in NPDS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00118.html
Blind SQL injection vulnerability in NPDS REvolution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00119.html
Joomla Component advertising (com_aardvertiser) File Inclusion Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00120.html
[security bulletin] HPSBPI02532 SSRT100111 rev.1 - HP MFP Digital Sending Software Running on Windows, Local Unauthorized Access
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00114.html
Secunia Research: aria2 metalink "name" Directory Traversal Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00111.html
Secunia Research: Free Download Manager metalink "name" Directory Traversal
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00115.html
Secunia Research: Free Download Manager Four Buffer Overflow Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00117.html
Secunia Research: KDE KGet metalink "name" Directory Traversal Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00112.html
Secunia Research: KDE KGet Insecure File Operation Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00110.html
[USN-938-1] KDENetwork vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00116.html
[ MDVSA-2010:095 ] libxext
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00113.html
New tool from Mozilla for updating plug-ins
http://isc.sans.org/diary.html?storyid=8788
OrangeHRM Multiple Vulnerabilities
http://secunia.com/advisories/39795/
Drupal Storm Module Multiple Script Insertion Vulnerabilities
http://secunia.com/advisories/39732/
aria2 metalink "name" Directory Traversal Vulnerability
http://secunia.com/advisories/39529/
Free Download Manager Multiple Vulnerabilities
http://secunia.com/advisories/39447/
KDE KGet Insecure File Operation and Directory Traversal
http://secunia.com/advisories/39528/
Invision Power Board Script Insertion Vulnerability
http://secunia.com/advisories/39748/
Invision Power Board Image Disclosure Vulnerability
http://secunia.com/advisories/39754/
MigasCMS Xinha Configuration Variable Overwrite Vulnerabilities
http://secunia.com/advisories/39808/
MiniWebSvr Directory Traversal Vulnerability
http://secunia.com/advisories/39763/
Majesty GEM Engine Multiple Vulnerabilities
http://secunia.com/advisories/39788/
GameCore Engine GameID Field Parsing Integer Overflow Vulnerability
http://secunia.com/advisories/39793/
HP Insight Control Server Migration for Windows Cross-Site Scripting
http://secunia.com/advisories/39712/
Drupal Services Module Session ID Authentication Security Bypass
http://secunia.com/advisories/39804/
Drupal Wordfilter Module Script Insertion Vulnerability
http://secunia.com/advisories/39811/
Drupal LoginToboggan Session Fixation Vulnerability
http://secunia.com/advisories/39812/
Drupal Bibliography Module Script Insertion Vulnerability
http://secunia.com/advisories/39810/
Drupal Auto Assign Role Module Security Bypass
http://secunia.com/advisories/39807/
Drupal Award Module Script Insertion Vulnerability
http://secunia.com/advisories/39809/
Pidgin MSN SLP Message Custom Emoticon Denial of Service Weakness
http://secunia.com/advisories/39801/
Fedora update for xar
http://secunia.com/advisories/39774/
Cisco PGW 2200 Softswitch Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/39733/
Fedora update for lighttpd
http://secunia.com/advisories/39765/
Fedora update for boa
http://secunia.com/advisories/39775/
Drupal CiviRegister Module Script Insertion Vulnerability
http://secunia.com/advisories/39806/
KDE KGet Contains File Overwrite and Directory Traversal Bugs
http://securitytracker.com/alerts/2010/May/1023984.html
HP MFP Digital Sending Software Lets Local Users Gain Elevated Privileges on the Target Peripheral
http://securitytracker.com/alerts/2010/May/1023983.html
MOPS-2010-023: Cacti Graph Viewer SQL Injection Vulnerability
http://php-security.org/2010/05/13/mops-2010-023-cacti-graph-viewer-sql-injection-vulnerability/index.html
MySQL Command Handling Buffer Overflow and Security Bypass
http://www.vupen.com/english/advisories/2010/1137
Movable Type Data Processing Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/1136
Redhat Security Update Fixes Java-1.4.2-ibm Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/1135
Fedora Security Update Fixes XAR Signature Verification Bypass
http://www.vupen.com/english/advisories/2010/1134
Fedora Security Update Fixes Boa Sequence Injection Vulnerability
http://www.vupen.com/english/advisories/2010/1133
Fedora Security Update Fixes Lighttpd Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/1132
Fedora Security Update Fixes Apache CouchDB Information Leak
http://www.vupen.com/english/advisories/2010/1131
Mandriva Security Update Fixes libXext Race Condition Vulnerability
http://www.vupen.com/english/advisories/2010/1130
Mandriva Security Update Fixes TeteX Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/1129
WFTPD Server 3.30 Multiple remote vulnerabilities(0day)
http://www.exploit-db.com/exploits/12587
MySQL 'sql/sql_table.cc' CREATE TABLE Security Bypass Vulnerability
http://www.securityfocus.com/bid/38043
MySQL UNINSTALL PLUGIN Security Bypass Vulnerability
http://www.securityfocus.com/bid/39543
MySQL Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/37297
Dojo Versions Prior to 1.4.2 Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/38739
Adobe Shockwave Player 'DIRAPI.dll' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/40076
Apache mod_auth_shadow Race Condition Security Bypass Vulnerability
http://www.securityfocus.com/bid/39538
MIT Kerberos kadmind 'server_stubs.c' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/39247
KDE KGet Security Bypass and Directory Traversal Vulnerabilities
http://www.securityfocus.com/bid/40141
X.Org 'libxext' '_XAllocID' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/40137
WordPress WP-Cumulus Plugin 'tagcloud.swf' Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/37100
HLstatsX CE 'hlstats.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/40164
Seber Cart Component for Joomla! 'getPic.php' Directory Traversal Vulnerability
http://www.securityfocus.com/bid/40161
Joomla! 'com_konsultasi' Component 'sid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/40160
NPDS Revolution 'topic' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/40157
NPDS Revolution 'download.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/40156
GameCore 'GameID' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/40155
Joomla! Advertising Component 'file' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/40153
Free Download Manager Metalink File Directory Traversal Vulnerability
http://www.securityfocus.com/bid/40152
AdvertisementManager 'usr' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/40151
Cacti 'rra_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/40149
Free Download Manager Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/40146
DJ Studio Pro '.pls' File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/40144
aria2 Metalink File Handling Directory Traversal Vulnerability
http://www.securityfocus.com/bid/40142
Invision Power Board Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/40136
0 件のコメント:
コメントを投稿