+ Linux Kernel EFI Partition Denial of Service Vulnerability
http://www.securityfocus.com/bid/47343
UPDATE: HPSBMA02652 SSRT100432 rev.3 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Information Disclosure
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02776387
PSN-2011-04-222: 2011-04 Routing & Switching: No Scheduled SIRT Security Bulletins for April 2011
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2011-04-222&viewMode=view
jetty@codehaus 7.4.0.v20110414
http://svn.codehaus.org/jetty/jetty/branches/jetty-7/VERSION.txt
Linux kernel 2.6.39-rc3 released
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc3
Mandriva : [MDVSA-2011:073] dhcp
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35571
Microsoft : Cumulative Security Update for Internet Explorer
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35581
Microsoft : Vulnerabilities in SMB Client Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35582
Microsoft : Vulnerability in SMB Server Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35583
Microsoft : Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35584
Microsoft : Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35585
Microsoft : Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35586
Microsoft : Vulnerability in Windows Fax Cover Page Editor Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35587
Microsoft : Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35588
Microsoft : Vulnerability in MHTML Could Allow Information Disclosure
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35589
Microsoft : Cumulative Security Update of ActiveX Kill Bits
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35590
Microsoft : Vulnerability in .NET Framework Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35591
Microsoft : Vulnerability in GDI+ Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35592
Microsoft : Vulnerability in DNS Resolution Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35593
Microsoft : Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35594
Microsoft : Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35595
Microsoft : Vulnerability in WordPad Text Converters Could Allow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35596
Microsoft : Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35597
QSecure : Arbitary File Upload Vulnerability in Elxis CMS component eForum v1.1
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35572
Red Hat : [RHSA-2011:0432-01] xorg-x11: Moderate Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35569
Red Hat : [RHSA-2011:0433-01] xorg-x11-server-utils: Moderate Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35570
Slackware Linux : [SSA:2011-101-01] shadow: Security Update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35568
トレンドマイクロ、学生アワードを今年も開催
http://itpro.nikkeibp.co.jp/article/NEWS/20110414/359419/?ST=security
データを瞬時に無効化できる2.5型HDD、東芝が発表
http://itpro.nikkeibp.co.jp/article/NEWS/20110414/359404/?ST=security
WindowsやOfficeなどに危険な脆弱性が多数、すぐにパッチの適用を
過去最多17件のセキュリティ情報が公開、脆弱性も過去最多の64件
http://itpro.nikkeibp.co.jp/article/NEWS/20110414/359401/?ST=security
JVNVU#230057 Adobe Flash Player に脆弱性
http://jvn.jp/cert/JVNVU230057/index.html
dshield.org now DNSSEC signed via .org
http://isc.sans.edu/diary.html?storyid=10705
Update to Adobe Flash 0-day: Patch will be out soon
http://isc.sans.edu/diary.html?storyid=10702
TimThumb Cross-Site Scripting and Denial of Service Vulnerabilities
http://secunia.com/advisories/44126/
WooThemes "Live Wire" and "Gazette Edition" WordPress Themes Multiple Vulnerabilities
http://secunia.com/advisories/44140/
IBM Tivoli Directory Server Two Vulnerabilities
http://secunia.com/advisories/44184/
Microsoft Reader Multiple Vulnerabilities
http://secunia.com/advisories/44121/
SPIP Database Disconnect Denial of Service Vulnerability
http://secunia.com/advisories/44147/
HP Network Node Manager i Unauthorized Access and Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/44185/
HP Network Node Manager i Java Double Literal Denial of Service Vulnerability
http://secunia.com/advisories/44186/
Xceed Zip Compression Library Buffer Overflow Vulnerability
http://secunia.com/advisories/44129/
Vallen Zipper Buffer Overflow Vulnerability
http://secunia.com/advisories/44128/
Xceed Zip Compression Library Buffer Overflow Vulnerability
http://secunia.com/advisories/44099/
Debian update for vlc
http://secunia.com/advisories/43890/
Red Hat update for avahi
http://secunia.com/advisories/44131/
Barcode Reader Toolkit "pdf2tif.dll" File Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/44095/
FirstClass Client Link Input Sanitation and Insecure Library Loading Vulnerabilities
http://secunia.com/advisories/44052/
Xataface Output Cache Session Hijacking Security Issue
http://secunia.com/advisories/44130/
Red Hat update for kernel
http://secunia.com/advisories/44136/
BlackBerry Enterprise Server Multiple Vulnerabilities
http://secunia.com/advisories/44183/
BlackBerry Enterprise Server Apache Tomcat Multiple Vulnerabilities
http://secunia.com/advisories/44166/
MediaWiki Multiple Vulnerabilities
http://secunia.com/advisories/44142/
SUSE update for rsyslog
http://secunia.com/advisories/44158/
Wordtrainer Glosexpert File Parsing Buffer Overflow Vulnerabilities
http://secunia.com/advisories/44101/
WebJaxe Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/44118/
Tracks 1.7.2 XSS Vulnerability
http://securityreason.com/securityalert/8196
InTerra Blog Machine XSS vulnerability
http://securityreason.com/securityalert/8195
Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability
http://securityreason.com/securityalert/8194
HP Network Node Manager i Cross Site Scripting and Unauthorized Access
http://www.vupen.com/english/advisories/2011/0974
HP Network Node Manager i Java Remote Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2011/0973
BlackBerry Enterprise Server Tomcat Information Disclosure and DoS
http://www.vupen.com/english/advisories/2011/0972
BlackBerry Enterprise Server Web Desktop Manager Cross Site Scripting
http://www.vupen.com/english/advisories/2011/0971
IBM DB2 Everyplace Java Remote Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2011/0970
Redhat Security Update Fixes Avahi Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2011/0969
Redhat Security Update Fixes Kernel Privilege Escalation and DoS
http://www.vupen.com/english/advisories/2011/0968
Red Hat Network Satellite Unauthorized Access and Information Disclosure
http://www.vupen.com/english/advisories/2011/0967
Redhat Security Update Fixes X.Org X11 Command Injection Vulnerability
http://www.vupen.com/english/advisories/2011/0966
Fedora Security Update Fixes DHCP Command Injection Vulnerability
http://www.vupen.com/english/advisories/2011/0965
Fedora Security Update Fixes DBus Nested Variants Stack Overflow
http://www.vupen.com/english/advisories/2011/0964
Fedora Security Update Fixes Exim Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2011/0963
Fedora Security Update Fixes Libvirt Connections Privilege Escalation
http://www.vupen.com/english/advisories/2011/0962
Fedora Security Update Fixes Logrotate Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2011/0961
Fedora Security Update Fixes LibTIFF Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2011/0960
Fedora Security Update Fixes Quagga Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2011/0959
Fedora Security Update Fixes NSS Fraudulent SSL Certificates Issue
http://www.vupen.com/english/advisories/2011/0958
rPath Security Update Fixes httpd Information Disclosure Vulnerability
http://www.vupen.com/english/advisories/2011/0957
rPath Security Update Fixes OpenSSL DoS and Security Bypass Issues
http://www.vupen.com/english/advisories/2011/0956
SuSE Security Update Fixes Rsyslog Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2011/0955
Debian Security Update Fixes VLC "MP4_ReadBox_skcr()" Heap Corruption
http://www.vupen.com/english/advisories/2011/0954
Mandriva Security Update Fixes Qt Fraudulent SSL Certificates Issue
http://www.vupen.com/english/advisories/2011/0953
LOCAL: PlaylistMaker V1.5 .txt File Buffer Overflow Vulnerability
http://www.exploit-db.com/exploits/17166/
BlackBerry Enterprise Server Input Validation Flaw in BlackBerry Web Desktop Manager Permits Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1025356
CA Total Defense Input Validation Flaw Lets Remote Users Inject SQL Commands
http://www.securitytracker.com/id/1025353
RealPlayer OpenURLInDefaultBrowser() Function Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1025351
Windows Operating System Loader Driver Signing Restrictions Can Be Bypassed
http://www.securitytracker.com/id/1025348
PDF Extract TIFF 'pdf2tif.dll' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/47322
Layer Four Traceroute (LFT) Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/46477
Adobe Flash Player CVE-2011-0611 'SWF' File Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/47314
MIT Kerberos kadmind Change Password Feature Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47310
Microsoft Windows Messenger ActiveX Control Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47197
Microsoft Internet Explorer 8 Developer Tools Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/40490
Microsoft WMI Administrative Tools ActiveX Control Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/45546
Microsoft WordPad Text Converter (CVE-2011-0028) Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47236
Microsoft Windows SMB Client Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47239
Microsoft Windows 'BROWSER ELECTION' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/46360
Microsoft Windows CVE-2011-0657 DNS Resolution Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47242
Microsoft Windows SMB Transaction Parsing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47198
Microsoft .NET Framework x86 JIT compiler Stack Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47223
BlackBerry Enterprise Server Web Desktop Manager Component Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/47324
Joomla! JCE Component 'index.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/47284
Linux Kernel Generic Receive Offload (GRO) Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/47056
Oracle Java Floating-Point Value Denial of Service Vulnerability
http://www.securityfocus.com/bid/46091
Microsoft GDI+ EMF Image Processing Integer Overflow Memory Corruption Vulnerability
http://www.securityfocus.com/bid/47250
X.Org xrdb Remote Arbitrary Shell Command Injection Vulnerability
http://www.securityfocus.com/bid/47189
Microsoft Windows OpenType Font (OTF) Driver Stack Overflow Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47179
IBM Tivoli Directory Server Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/47121
GIMP Multiple File Plugins Remote Stack Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/45647
Microsoft Excel CVE-2011-0103 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/47244
Computer Associates Total Defense 'UNCSW' Service Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47356
Computer Associates Total Defense Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/47355
MediaWiki Versions Prior to 1.16.3 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/47354
Xataface Output Cache Session Hijacking Vulnerability
http://www.securityfocus.com/bid/47353
Open Text FirstClass Client 'FCP://' URI and DLL Loading Arbitrary Code Execution Vulnerabilities
http://www.securityfocus.com/bid/47347
TinyBB 'viewthread.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/47346
ProletSoft Playlistmaker '.txt' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/47344
Linux Kernel EFI Partition Denial of Service Vulnerability
http://www.securityfocus.com/bid/47343
TOTVS ERP Microsiga Protheus Memory Corruption Denial Of Service Vulnerability
http://www.securityfocus.com/bid/47342
0 件のコメント:
コメントを投稿