+ BIND 9.7.2-P1 released
http://ftp.isc.org/isc/bind9/9.7.2-P1/RELEASE-NOTES-BIND-9.7.2-P1.html
- NetVault Backup 8.5.2 released
http://www.bakbone.co.jp/products/nvbu852.html
http://www.bakbone.co.jp/docs/release_notes_nvbu852_j.pdf
Postfix 2.8 Snapshot 20100917
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20100917.HISTORY
ウイルスバスター コーポレートエディション 10.5 および Trend Micro Smart Protection Server 2.0 の公開とサポートサービス開始のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1471
JVNDB-2010-002017 Windows 上で稼働する RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002017.html
JVNDB-2010-002016 Windows 上で稼働する RealNetworks RealPlayer における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002016.html
JVNDB-2010-002015 Windows 上で稼働する RealNetworks RealPlayer における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002015.html
JVNDB-2010-002014 Perl の Safe モジュールにおける任意のコードを挿入または実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002016.html
Debian update for samba
http://secunia.com/advisories/41499/
HP-UX update for BIND
http://secunia.com/advisories/41500/
+ Tomcat 5.5.31 Released
http://tomcat.apache.org/tomcat-5.5-doc/changelog.html
+- PostgreSQL JDBC Driver 8.0-325, 8.1-415, 8.2-511, 8.3-606, 8.4-702 released
http://jdbc.postgresql.org/changes.html
Thunderbird 3.1.4 and 3.0.8 updates now available for download
http://www.mozillamessaging.com/en-US/about/press/archive/-01
http://www.mozillamessaging.com/en-US/thunderbird/3.0.8/releasenotes/
http://www.mozillamessaging.com/en-US/thunderbird/3.1.4/releasenotes/
HIPER - After installing Oracle StorageTek ELS 7.0 software, customers using the DFSMS interface to select a POLICY statement may find that the subpool selected is not the one specified by the SUBPOOL
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1207058.1-1
CESA-2010:0697 (samba)
http://lwn.net/Alerts/405748/
CESA-2010:0697 (samba)
http://lwn.net/Alerts/405749/
CESA-2010:0697 (samba)
http://lwn.net/Alerts/405757/
CESA-2010:0698 (samba3x)
http://lwn.net/Alerts/405758/
High-Tech Bridge SA : [HTB22596] XSS vulnerability in AContent search
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33704
High-Tech Bridge SA : [HTB22599] XSS vulnerability in Atutor edit content folder
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33705
High-Tech Bridge SA : [HTB22597] XSS vulnerability in AContent
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33706
High-Tech Bridge SA : [HTB22600] XSS vulnerability in ATutor
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33707
High-Tech Bridge SA : [HTB22601] XSS vulnerability in AChecker
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33708
High-Tech Bridge SA : [HTB22595] XSS (cross site scripting) vulnerability in Serendipity
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33709
High-Tech Bridge SA : [HTB22593] XSS vulnerability in SantaFox search module
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33710
High-Tech Bridge SA : [HTB22594] XSRF (CSRF) in SantaFox
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33711
Mandriva : [MDVSA-2010:183] socat Stack-based buffer overflow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33702
ZDI : [ZDI-10-178] Novell PlateSpin Orchestrate Graph Rendering Remote Code Execution Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33703
ウイルスの“悪行”を封じ込めるL2スイッチ、ネットワールドが販売開始
http://itpro.nikkeibp.co.jp/article/NEWS/20100916/352060/?ST=security
[SECURITY] [DSA-2109-1] New samba packages fix buffer overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-09/msg00134.html
[security bulletin] HPSBGN02577 SSRT100224 rev.2 - 3Com OfficeConnect Gigabit VPN Firewall (3CRE
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-09/msg00132.html
[security bulletin] HPSBMA02568 SSRT100219 rev.1 - HP System Management Homepage (SMH) for Linux
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-09/msg00133.html
Facebook "Like Pages"
http://isc.sans.edu/diary.html?storyid=9556
A Packet a Day
http://isc.sans.edu/diary.html?storyid=9559
OpenX Ad-Server Vulnerability
http://isc.sans.edu/diary.html?storyid=9562
Splunk Two Vulnerabilities
http://secunia.com/advisories/41479/
IBM WebSphere Application Server Community Edition Multiple Vulnerabilities
http://secunia.com/advisories/41484/
Honest Technology VHS to DVD Project File Processing Buffer Overflow
http://secunia.com/advisories/41473/
E-Xoopport "secid" SQL Injection Vulnerability
http://secunia.com/advisories/41397/
ATutor "cid" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/41468/
Pixelpost Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/41436/
ApPHP PHP MicroCMS "user_name" and "password" SQL Injection Vulnerabilities
http://secunia.com/advisories/41492/
ApPHP PHP MicroCMS "page" Local File Inclusion Vulnerability
http://secunia.com/advisories/41491/
ApPHP PHP MicroCMS SQL Injection and Local File Inclusion Vulnerabilities
http://secunia.com/advisories/41455/
IBM FileNet Application Engine Multiple Vulnerabilities
http://secunia.com/advisories/41460/
IBM FileNet Application Engine Redirection and Cross-Site Scripting
http://secunia.com/advisories/41458/
AChecker "uri" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/41467/
QuickShare Directory Traversal Vulnerability
http://secunia.com/advisories/41474/
AContent Multiple Vulnerabilities
http://secunia.com/advisories/41469/
Drupal Mollom Module Information Disclosure Security Issue
http://secunia.com/advisories/41363/
HP System Management Homepage Multiple Vulnerabilities
http://secunia.com/advisories/41490/
HP System Management Homepage Multiple Vulnerabilities
http://secunia.com/advisories/41480/
Mollify "confirm" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/41472/
Drupal Advanced Taxonomy Blocks Module Script Insertion and Cross-Site Request Forgery
http://secunia.com/advisories/41489/
Drupal Advanced Book Blocks Module Script Insertion and Cross-Site Request Forgery
http://secunia.com/advisories/41488/
IBM Proventia Network Mail Security System Multiple Vulnerabilities
http://secunia.com/advisories/41401/
Santafox Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities
http://secunia.com/advisories/41465/
NetArt Media Real Estate Portal Multiple Vulnerabilities
http://secunia.com/advisories/41377/
OTRS Script Insertion and Denial of Service Vulnerabilities
http://secunia.com/advisories/41381/
Fedora update for fuse-encfs
http://secunia.com/advisories/41478/
IBM FileNet Application Engine URL-based Session IDs May Let Remote Users Hijack User Sessions
http://securitytracker.com/alerts/2010/Sep/1024456.html
IBM FileNet Application Engine Input Validation Hole Permits Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2010/Sep/1024455.html
HP System Management Homepage Input Validation Flaw Permits HTTP Response Splitting Attacks
http://securitytracker.com/alerts/2010/Sep/1024453.html
IBM FileNet P8 Platform Cross Site Scripting and URL Redirection Issues
http://www.vupen.com/english/advisories/2010/2419
HP System Management Homepage Multiple Remote Vulnerabilities
http://www.vupen.com/english/advisories/2010/2418
Novell PlateSpin Orchestrate Graph Rendering Code Execution Vulnerability
http://www.vupen.com/english/advisories/2010/2417
Apple QuickTime Code Execution and Insecure Library Loading Issues
http://www.vupen.com/english/advisories/2010/2416
Axigen Mail Server Directory Traversal and Cross Site Scripting Issues
http://www.vupen.com/english/advisories/2010/2415
Fedora Security Update Fixes EncFS Multiple Security Bypass Issues
http://www.vupen.com/english/advisories/2010/2414
Fedora Security Update Fixes Squid Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/2413
Mandriva Security Update Fixes Socat Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/2412
Mandriva Security Update Fixes kdegraphics Code Execution Vulnerability
http://www.vupen.com/english/advisories/2010/2411
BACnet OPC Client Buffer Overflow Exploit
http://www.exploit-db.com/exploits/15026/
Linux Kernel 2.6.27+ x86_64 compat exploit
http://www.exploit-db.com/exploits/15024/
x86_64 Linux Kernel ia32syscall Emulation Privilege Escalation
http://www.exploit-db.com/exploits/15023
Honestech VHS to DVD <= 3.0.30 Deluxe Local Buffer Overflow (SEH) http://www.exploit-db.com/exploits/15022/
MOAUB #16 - Microsoft Excel HFPicture Record Parsing Remote Code Execution Vulnerability
http://www.exploit-db.com/exploits/15019/
Samba SID Parsing Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/43212
Apache Tomcat Windows Installer Insecure Password Vulnerability
http://www.securityfocus.com/bid/36954
Joomla! Freestyle FAQ Lite Component 'faqid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39220
Ipswitch IMail Server List Mailer 'imailsrv.exe' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/41717
Virtue Shopping Mall 'detail.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43274
Apache Tomcat Directory Host Appbase Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/37942
Apache Tomcat WAR File Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37944
Apache Tomcat Host Working Directory WAR File Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37945
ISC BIND 9 DNSSEC Query Response Additional Section Remote Cache Poisoning Vulnerability
http://www.securityfocus.com/bid/37118
RadASM '.mnu' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37914
Weborf HTTP 'modURL()' Function Directory Traversal Vulnerability
http://www.securityfocus.com/bid/43016
IBM FileNet Application Engine Open Redirection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/43272
Linux Kernel 'video4linux' IOCTL and IP Multicast 'getsockopt' Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43239
Microsoft LSASS ADAM/ADLDS Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43037
Apache Subrequest Handling Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38580
Microsoft Windows and Office Uniscribe Font Parsing Engine Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43068
Microsoft Windows RPC Memory Allocation Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43119
Microsoft Windows Print Spooler Service Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43073
Microsoft MPEG Layer-3 Audio Decoder Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/42298
Squid Proxy String Processing NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42982
Apple QuickTime Pictureviewer Multiple DLL Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/42774
PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
http://www.securityfocus.com/bid/37079
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
PHP 'session.save_path()' Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/37390
PHP 'proc_open()' 'safe_mode_protected_env_var' Restriction-Bypass Vulnerability
http://www.securityfocus.com/bid/37138
Apache 'mod_proxy_http' Timeout Handling Information Disclosure Vulnerability
http://www.securityfocus.com/bid/40827
3Com OfficeConnect Gigabit VPN Firewall (3CREVF100-73) Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/43236
Microsoft Excel HFPicture Record Parsing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/40526
Linux Kernel Ptrace Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/25774
IBM FileNet Application Engine Multiple Vulnerabilities
http://www.securityfocus.com/bid/43271
mojoportal HTML Injection Vulnerability
http://www.securityfocus.com/bid/43268
NetArt Media Real Estate Portal 'index.php' Multiple Vulnerabilities
http://www.securityfocus.com/bid/43266
0 件のコメント:
コメントを投稿