Oracle Solaris 11 Express 2010.11 released
http://www.oracle.com/technetwork/server-storage/solaris11/downloads/index.html
ServerProtect for Windows 5.8 用 Patch 2 build 1270 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1498
プレス発表
TCP/IPの脆弱性に関する検証ツールのIPv6の検証機能を強化
~TCP/IP実装製品の開発者向けにIPv6検証機能の拡充版を無償貸出~
http://www.ipa.go.jp/about/press/20101125.html
JVNVU#935740 Apple TV における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNVU935740/index.html
JVNDB-2010-002411 Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002411.html
JVNDB-2010-002410 Apple Mac OS X の AFP Server における共有名を列挙される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002410.html
JVNDB-2010-002409 Apple Mac OS X の AFP Server におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002409.html
JVNDB-2010-002408 Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002408.html
JVNDB-2010-002407 Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002407.html
JVNDB-2010-002406 Python の rgbimg モジュール内にある RLE デコーダにおける脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002406.html
JVNDB-2010-002405 Python の rgbimg モジュール内にある rgbimgmodule.c における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002405.html
JVNDB-2010-002404 Apple Mac OS X の OpenSSL における X.509 証明書の認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002404.html
JVNDB-2010-002403 Apple Mac OS X の hfs 実装におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002403.html
JVNDB-2010-002402 Python の rgbimg モジュールにおけるバッファアンダーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002402.html
JVNDB-2010-001939 Adobe Flash の ActionScript の処理に脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001939.html
JVNDB-2010-001812 OpenLDAP の slap_modrdn2mods 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001812.html
JVNDB-2010-001615 Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001615.html
JVNDB-2010-001158 libpng における圧縮された補助チャンクの処理に脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001158.html
JVNDB-2010-001086 gzip の huft_build 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001086.html
JVNDB-2010-001060 GNU gzip における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001060.html
JVNDB-2009-002320 Apache HTTP Server 用 mod_perl の Status.pm におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002320.html
JVNDB-2009-002168 neon における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002168.html
JVNDB-2009-002167 neon におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002167.html
JVNDB-2009-001337 FreeType における入力処理に関する整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001337.html
JVNDB-2008-002431 Adobe Flash Player および Adobe AIR におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002431.html
Google Android Lets Remote Users Obtain SD Card Contents
http://securitytracker.com/alerts/2010/Nov/1024783.html
Microsoft Windows "EnableEudc()" Local Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/3058
+ HPSBUX02609 SSRT100147 rev.1 - CIFS Server (Samba), Remote Execution of Arbitrary Code, Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02627925
+ Linux Kernel inotify Memory Leak Denial of Service Vulnerability
http://secunia.com/advisories/42365/
http://www.securityfocus.com/bid/45036
+- Linux Kernel Socket Denial of Service Vulnerability
http://secunia.com/advisories/42354/
http://www.securityfocus.com/bid/45037
- Privilege escalation 0-day in almost all Windows versions
http://isc.sans.edu/diary.html?storyid=9988
- Microsoft Windows "NtGdiEnableEudc()" Local Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/3058
- Microsoft Windows User Access Control (UAC) Bypass Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/45045
Apache Tuscany SCA Java 1.6.1 released
http://tuscany.apache.org/sca-java-1x-releases.html
[ANNOUNCE] Apache Tuscany SCA Java 2.0-Beta1 released
http://tuscany.apache.org/sca-java-2x-releases.html
Apache Subversion 1.6.15 Released
http://subversion.apache.org/docs/release-notes/1.6.html
http://svn.apache.org/repos/asf/subversion/tags/1.6.15/CHANGES
ウイルスバスターのスパイウェアパターンファイルバージョン番号の拡張について
http://www.trendmicro.co.jp/support/news.asp?id=1494
「北朝鮮砲撃」に便乗する悪質サイト、偽ソフトを配布
事件に関連した文字列で検索すると表示、米トレンドマイクロが報告
http://itpro.nikkeibp.co.jp/article/NEWS/20101125/354511/?ST=security
Privilege escalation 0-day in almost all Windows versions
http://isc.sans.edu/diary.html?storyid=9988
Help with odd port scans
http://isc.sans.edu/diary.html?storyid=9991
Xen Backend Drivers Kernel Thread Leak Denial of Service Vulnerabilities
http://secunia.com/advisories/42372/
Linux Kernel inotify Memory Leak Denial of Service Vulnerability
http://secunia.com/advisories/42365/
Linux Kernel Socket Denial of Service Vulnerability
http://secunia.com/advisories/42354/
DaDaBIK Script Insertion Vulnerability
http://secunia.com/advisories/42363/
Trend Micro Office Scan Privilege Escalation Vulnerability
http://secunia.com/advisories/42370/
RSA Adaptive Authentication Cross-Site Scripting Vulnerability
http://secunia.com/advisories/42332/
HP-UX update for Tomcat Servlet Engine
http://secunia.com/advisories/42368/
Red Hat update for postgresql
http://secunia.com/advisories/42325/
Trend Micro OfficeScan TMTDI Kernel Drivers Let Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2010/Nov/1024782.html
Cisco Unified Videoconferencing multiple vulnerabilities
http://securityreason.com/securityalert/7909
Microsoft Windows "NtGdiEnableEudc()" Local Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/3058
ZyXEL P-660R-T1 "HomeCurrent_Date" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2010/3057
HP-UX Apache Web Server Suite Information Disclosure and DoS
http://www.vupen.com/english/advisories/2010/3056
RSA Adaptive Authentication Embedded File Cross Site Scripting
http://www.vupen.com/english/advisories/2010/3055
Trend Micro OfficeScan "Tmtdi.sys" Driver Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2010/3054
Fedora Security Update Fixes Libtlen Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/3053
Fedora Security Update Fixes Bzip2 Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/3052
Redhat Security Update Fixes PostgreSQL Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2010/3051
Redhat Security Update Fixes Kernel Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/3050
Elevation of privileges under Windows Vista/7 (UAC Bypass)
http://www.exploit-db.com/exploits/15609/
Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36097
GNUCash 'LD_LIBRARY_PATH' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44563
Mono 'loader.c' Library Loading Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44810
Microsoft Office Art Drawing Record Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/44656
Linux Kernel 'posix-cpu-timers.c' Local Race Condition Vulnerability
http://www.securityfocus.com/bid/45028
Xen 'drivers/xen/blkback/blkback.c' Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/45029
Apache Tomcat 'RequestDispatcher' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35263
Apache Tomcat XML Parser Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35416
Apache Tomcat Authentication Header Realm Name Information Disclosure Vulnerability
http://www.securityfocus.com/bid/39635
Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
http://www.securityfocus.com/bid/35196
Apache Tomcat Java AJP Connector Invalid Header Denial of Service Vulnerability
http://www.securityfocus.com/bid/35193
Apache Tomcat 'Transfer-Encoding' Information Disclosure and Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/41544
Microsoft Windows User Access Control (UAC) Bypass Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/45045
MCG GuestBook Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/45043
SimpLISTic SQL 'email.cgi' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/45040
D-Link DIR-300 WiFi Key Security Bypass Vulnerability
http://www.securityfocus.com/bid/45038
Linux Kernel 'inotify_init()' Memory Leak Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/45036
0 件のコメント:
コメントを投稿