Moderate: kdelibs security and enhancement update
http://rhn.redhat.com/errata/RHSA-2011-1364.html
About the security content of iTunes 10.5
http://support.apple.com/kb/HT4981
Apache Subversion 1.7.0 Released
http://subversion.apache.org/docs/release-notes/1.7.html
http://svn.apache.org/repos/asf/subversion/tags/1.7.0/CHANGES
[ANNOUNCE] Postgres-XC 0.9.6 available
http://postgres-xc.sourceforge.net/
GCC 4.7.0 Active development
http://gcc.gnu.org/ml/gcc/2011-10/msg00177.html
Hats off to the Apache Subversion team on the milestone release of Subversion v1.7.0!
https://blogs.apache.org/foundation/entry/hats_off_to_the_apache
「ASTERIA WARP」無料体験オンラインセミナーのお知らせ
http://asteria.jp/news/20111012-130000.html
Microsoft Security Bulletin Summary for October 2011
http://technet.microsoft.com/en-us/security/bulletin/ms11-oct
HS11-022: DoS Vulnerability in Hitachi Command Suite Products
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-022/index.html
- HS11-021: DoS Vulnerability in JP1 Products
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-021/index.html
HS11-020: DoS Vulnerability in Hitachi IT Operations Products
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-020/index.html
HS11-019: DoS Vulnerability in Hitachi Web Server
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-019/index.html
- HS11-023: JP1/Cm2/Network Node Manager iにおける複数の脆弱性
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS11-023/index.html
UPDATE: HS11-019: Hitachi Web ServerにおけるRangeヘッダによるDoS脆弱性
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS11-019/index.html
Microsoftのセキュリティレポート、ゼロデイ攻撃はマルウエア感染の1%未満
http://itpro.nikkeibp.co.jp/article/NEWS/20111012/370522/?ST=security
JVN#84838479 サイボウズ Office におけるアクセス制限不備の脆弱性
http://jvn.jp/jp/JVN84838479/index.html
JVNVU#706419 Apple iTunes における脆弱性に対するアップデート
http://jvn.jp/cert/JVNVU706419/index.html
JVNTA11-284A Microsoft 製品における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNTA11-284A/index.html
JVNVU#924307 D-Link DIR-685 Xtreme N Storage Router の暗号化通信に脆弱性
http://jvn.jp/cert/JVNVU924307/index.html
JVNVU#384427 GoAhead Webserver にクロスサイトスクリプティングの脆弱性
http://jvn.jp/cert/JVNVU384427/index.html
IBM WebSphere ILOG Rule Team Server Input Validation Flaw Permits Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1026170
+ 2011 年 10 月のセキュリティ情報
http://technet.microsoft.com/ja-jp/security/bulletin/ms11-oct
+ MS11-075: Microsoft Active Accessibility の脆弱性により、リモートでコードが実行される (2623699)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-075
+ MS11-077: Windows カーネルモード ドライバーの脆弱性により、リモートでコードが実行される (2567053)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-077
+ MS11-078: .NET Framework および Microsoft Silverlight の脆弱性により、リモートでコードが実行される (2604930)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-078
+ MS11-080: Ancillary Function ドライバーの脆弱性により、特権が昇格される (2592799)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-080
+ MS11-081: Internet Explorer 用の累積的なセキュリティ更新プログラム (2586448)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-081
- MS11-076: Windows Media Center の脆弱性により、リモートでコードが実行される (2604926)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-076
- MS11-079: Microsoft Forefront Unified Access Gateway の脆弱性により、リモートでコードが実行される (2544641)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-079
- MS11-082: Host Integration Server の脆弱性により、サービス拒否が起こる (2607670)
http://technet.microsoft.com/ja-jp/security/bulletin/MS11-082
- Dovecot 'script-login' Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/48003
- Dovecot Access Control List (ACL) Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/43690
- Dovecot Header Name NULL Character Denial of Service Vulnerability
http://www.securityfocus.com/bid/47930
- Dovecot Insecure 'base_dir' Permissions Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37084
- Dovecot Access Control List (ACL) Plugin Security Bypass Weakness
http://www.securityfocus.com/bid/41964
UPDATE: Cisco Security Advisory: Cisco IOS Software Smart Install Remote Code Execution Vulnerability
http://www.cisco.com/warp/public/707/cisco-sa-20110928-smart-install.shtml
Cisco Applied Mitigation Bulletin: Identifying and Mitigating Exploitation of the Cisco IOS Software Smart Install Remote Code Execution Vulnerability
http://www.cisco.com/warp/public/707/cisco-amb-20110928-smart-install.shtml
トレンドマイクロ オンラインストレージ SafeSync クライアントソフト最新ビルド公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1662
UPDATE: 2269637: Insecure Library Loading Could Allow Remote Code Execution
http://technet.microsoft.com/en-us/security/advisory/2269637
UPDATE: 2269637: セキュリティで保護されていないライブラリのロードにより、リモートでコードが実行される
http://technet.microsoft.com/ja-jp/security/advisory/2269637
Security Advisories Relating to Symantec Products - Multi-Vendor Autonomy Verity Keyview Filter Multiple Issues
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20111006_00
APPLE-SA--1 iTunes 10.5
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00063.html
[SECURITY] [DSA 2320-1] dokuwiki regression fix
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00043.html
[SECURITY] [DSA 2319-1] policykit-1 security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00042.html
Related POC for JCE Joomla Extension <=2.0.10 Multiple Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00060.html
ZOHO ManageEngine ADSelfService Plus Administrative Access
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00061.html
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00062.html
[ GLSA 201110-07 ] vsftpd: Denial of Service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00059.html
[ GLSA 201110-05 ] GnuTLS: Multiple vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00058.html
[ GLSA 201110-04 ]
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00057.html
[ GLSA 201110-03 ]
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00056.html
[security bulletin] HPSBMU02710 SSRT100601 rev.1 - HP Onboard Administrator (OA), Remote Unautho
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00055.html
[SECURITY] [DSA 2322-1] bugzilla security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00054.html
[SECURITY] [DSA 2321-1] moin security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00053.html
[ MDVSA-2011:147 ] cups
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00052.html
[ MDVSA-2011:146 ] cups
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00051.html
[Announcement] ClubHack Mag Issue 21- October 2011 Released
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00050.html
NGS00062 Technical Advisory: Apple OSX / iPhone ImageIO TIFF getBandProcTIFF TileWidth Heap Overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00049.html
[ MDVSA-2011:145 ] libxml2
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00048.html
[ MDVSA-2011:131-1 ] libxml
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00047.html
[ GLSA 201110-01 ] OpenSSL: Multiple vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00046.html
KaiBB 2.0.1 XSS and SQL Injection vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00045.html
openEngine 2.0 key Blind SQL Injection vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00044.html
[ MDVSA-2011:144 ] apache
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00041.html
SilverStripe 2.4.5 Multiple backend Cross-site scripting vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00040.html
Contao 2.10.1 Cross-site scripting vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00039.html
=?utf-8?Q?ABUS_TVIP_11550/21550_Multiple_vulnerabilities_=28and_possibly_?= =?utf-8?Q?other_
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00038.html
省庁職員5万人を対象に「標的型攻撃」訓練、偽のウイルスメールを送信
ファイルを開くと教育用コンテンツが表示、セキュリティ意識の向上を図る
http://itpro.nikkeibp.co.jp/article/NEWS/20111012/370500/?ST=security
Microsoft Black Tuesday Overview October 2011
http://isc.sans.edu/diary.html?storyid=11779
Critical Control 7 - Application Software Security
http://isc.sans.edu/diary.html?storyid=11776
Apple iTunes 10.5
http://isc.sans.edu/diary.html?storyid=11782
Microsoft Security Intelligence Report (SIR) - Volume 11
http://isc.sans.edu/diary.html?storyid=11785
Microsoft Forefront Unified Access Gateway Input Validation Flaws Permits Cross-Site Scripting, HTTP Response Splitting, and Denial of Service Attacks
http://www.securitytracker.com/id/1026169
Microsoft Host Integration Server Bugs Let Remote Users Deny Service
http://www.securitytracker.com/id/1026168
Microsoft Windows Ancillary Function Driver Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1026167
Windows Media Center DLL Loading Error Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026166
Windows Kernel-Mode Drivers Memory Corruption Errors Let Remote Users Execute Arbitrary Code and Local Users Deny Service and Gain Elevated Privileges
http://www.securitytracker.com/id/1026165
Microsoft Active Accessibility Component DLL Loading Error Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026164
Apple iTunes Multiple Flaws Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026163
Microsoft .NET Inheritance Restriction Error Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026162
Microsoft Silverlight Inheritance Restriction Error Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026161
Microsoft Internet Explorer Multiple Flaws Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026160
Microsoft .NET Framework / Silverlight Class Inheritance Restriction Vulnerability
http://secunia.com/advisories/46406/
Microsoft Host Integration Server Two Denial of Service Vulnerabilities
http://secunia.com/advisories/46399/
Microsoft Internet Explorer Multiple Vulnerabilities
http://secunia.com/advisories/46400/
Microsoft Windows win32k.sys Driver Multiple Vulnerabilities
http://secunia.com/advisories/46405/
Microsoft Windows Ancillary Function Driver Privilege Escalation Vulnerability
http://secunia.com/advisories/46401/
Microsoft Windows Active Accessibility Insecure Library Loading Vulnerability
http://secunia.com/advisories/46403/
Microsoft Windows Media Center Insecure Library Loading Vulnerability
http://secunia.com/advisories/46404/
Microsoft Forefront Unified Access Gateway Multiple Vulnerabilities
http://secunia.com/advisories/46402/
WordPress Ninja Announcements Plugin "[ninja_annc]" Shortcode SQL Injection
http://secunia.com/advisories/46398/
IBM WebSphere ILOG Rule Team Server "project" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/46350/
Comm100 Forum "dest" Redirection Weakness
http://secunia.com/advisories/46369/
MyBB Advanced Forum Signatures Plugin Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/46352/
Ubuntu update for linux
http://secunia.com/advisories/46355/
Gentoo update for php
http://secunia.com/advisories/46358/
Gentoo update for gnutls
http://secunia.com/advisories/46359/
Gentoo update for bugzilla
http://secunia.com/advisories/46364/
AUTOMGEN Project File Processing Use-After-Free Vulnerability
http://secunia.com/advisories/46340/
Kent Web Forum Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/46367/
Kent Web Forum Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/46395/
Geeklog BBcode Script Insertion Vulnerabilities
http://secunia.com/advisories/46348/
Phorum "phorum_admin_token" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/46337/
Debian update for moin
http://secunia.com/advisories/46366/
Gentoo update for dovecot
http://secunia.com/advisories/46363/
Debian update for bugzilla
http://secunia.com/advisories/46164/
FluxBB "X-Forwarded-For" SQL Injection Vulnerability
http://secunia.com/advisories/46325/
Snort Report "target" Two Command Injection Vulnerabilities
http://secunia.com/advisories/46054/
HP Onboard Administrator Unspecified Security Bypass Vulnerability
http://secunia.com/advisories/46385/
atvise webMI2ADS Multiple Vulnerabilities
http://secunia.com/advisories/46338/
VU#619281: Windows font library file buffer overflow
http://www.kb.cert.org/vuls/id/619281
Microsoft Host Integration Server Denial of Service Vulnerabilities (MS11-080)
http://www.vupen.com/english/ADV-2011-2173.php
Microsoft Internet Explorer Multiple Remote Code Execution (MS11-080)
http://www.vupen.com/english/ADV-2011-2172.php
Microsoft Windows Ancillary Function Driver Privilege Escalation (MS11-080)
http://www.vupen.com/english/ADV-2011-2171.php
Microsoft Forefront Unified Access Gateway Code Execution (MS11-079)
http://www.vupen.com/english/ADV-2011-2170.php
Microsoft .NET Framework and Silverlight Code Execution (MS11-078)
http://www.vupen.com/english/ADV-2011-2169.php
Microsoft Windows Kernel-Mode Drivers Code Execution (MS11-077)
http://www.vupen.com/english/ADV-2011-2168.php
Microsoft Windows Media Center Insecure Library Loading (MS11-076)
http://www.vupen.com/english/ADV-2011-2167.php
Microsoft Active Accessibility Insecure Library Loading (MS11-075)
http://www.vupen.com/english/ADV-2011-2166.php
IBM WebSphere ILOG Rule Team Server Cross Site Scripting
http://www.vupen.com/english/ADV-2011-2165.php
HP Onboard Administrator Remote Unauthorized Access Vulnerability
http://www.vupen.com/english/ADV-2011-2164.php
Apache mod_proxy Reverse Proxy Exposure Vulnerability PoC
http://www.exploit-db.com/exploits/17969/
Pango HarfBuzz Engine Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/49723
Cisco IOS Smart Install Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49828
RETIRED: Microsoft October 2011 Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/49994
Retired: Autonomy KeyView Filter 'jtdsr.dll' Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/50006
Autonomy KeyView Filter 'Text' Chunk Integer Overflow Vulnerability
http://www.securityfocus.com/bid/49899
Google Chrome prior to 9.0.597.107 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/46614
KDE KSSL Common Name SSL Certificate Spoofing Vulnerability
http://www.securityfocus.com/bid/49925
Autonomy KeyView Filter QLST Chunk Integer Overflow Vulnerability
http://www.securityfocus.com/bid/49898
chillyCMS SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/42991
iJoomla Magazine Joomla! Component Remote File Include Vulnerability
http://www.securityfocus.com/bid/43002
DMXReady Polling Booth Manager 'inc_pollingboothmanager.asp' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42990
Microsoft Windows Kernel '.fon' Font File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49975
Google Chrome Prior to 13.0.782.215 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49279
Google Chrome Prior to 14.0.835.163 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49658
Google Chrome Prior to 12.0.742.112 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/48479
Google Chrome Prior to 11.0.696.57 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/47604
Google Chrome Prior to 13.0.782.107 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/48960
Google Chrome Prior to 10.0.648.204 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/47029
Google Chrome prior to 10.0.648.127 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/46785
Google Chrome prior to 6.0.472.59 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/43228
Google Chrome prior to 9.0.597.94 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/46262
phpPgAdmin Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/49914
Perl Crypt-DSA Module Random Number Values Security Weakness
http://www.securityfocus.com/bid/49928
Zope Unspecified Security Vulnerability
http://www.securityfocus.com/bid/49857
SmartFTP 'filename' Unspecified Security Vulnerability
http://www.securityfocus.com/bid/44737
WeBid Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/44765
Vodpod Video Gallery for WordPress 'vodpod_gallery_thumbs.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/44715
ASPilot Pilot Cart Multiple Vulnerabilities
http://www.securityfocus.com/bid/44698
bloofoxCMS 'gender' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/44464
TYPO3 powermail Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/44422
NinkoBB 'users.php' Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/44462
MODx Local File Include and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/43577
Entrans 'poll.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43517
Allpc Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/43516
Entrans SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/43508
Geeklog 'singlefile.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43458
WAnewsletter 'index.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43440
Joomla! 'com_ezautos' Component SQL Injection Vulnerability
http://www.securityfocus.com/bid/43415
@Mail 'MailType' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/43377
Time Track Component for Joomla! 'ct_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43402
Joomla! Restaurant Guide Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43319
Virtue Book Store 'detail.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43275
Virtue Shopping Mall 'detail.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43274
Gambio 'product_reviews.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43318
UCenter Home 'shop.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43202
Mechanical Bunny Media PaysiteReviewCMS Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/43213
CubeCart Multiple Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/43114
Member Management System 'index.asp' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/43109
Zenphoto Multiple Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/43021
Multiple ColdGen Products 'index.cfm' Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/43035
RocketTheme Gantry Joomla! Framework 'moduleid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43017
MySource Matrix 'char_map.php' Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/43020
Joomla! Aardvertiser Component 'cat_name' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43014
A-Blog 'sources/search.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42988
BlueCMS 'X-Forwarded-For' Header SQL Injection Vulnerability
http://www.securityfocus.com/bid/42999
Joomla! Clantools Component Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/42986
OneCMS 'index.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/42949
Softbiz Article Directory Script 'sbiz_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/42977
PHP CLASSIFIEDS ADS 'sid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/42985
CMS WebManager-Pro 'c.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42951
TYPO3 Tiny Market (hm_tinymarket) Unspecified SQL Injection and Code Execution Vulnerabilities
http://www.securityfocus.com/bid/42943
TYPO3 Commenting system Backend Module Unspecified SQL Injection Vulnerability
http://www.securityfocus.com/bid/42946
TYPO3 Yet Another Calendar Extension Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/42945
TYPO3 The official twitter tweet button Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/42941
mBlogger 'viewpost.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42898
TYPO3 XING Button Extension Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/42937
ApPHP Calendar 'calendar.class.php' Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/42897
Hinnendahl Kontakt Formular 'formmailer.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/42789
Hinnendahl Gaestebuch 'script_pfad' Parameter Remote File Include Vulnerability
http://www.securityfocus.com/bid/42791
dompdf 'dompdf.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/42917
PHP-Fusion 'maincore.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/42456
Auto CMS 'autocms.php' Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/42764
SV Creation Get Tube 'video.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42449
xaJax Shoutbox (vx_xajax_shoutbox) For TYPO3 Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/42373
TYPO3 Event Extension Unspecified SQL Injection Vulnerability
http://www.securityfocus.com/bid/42380
Joomla! 'com_weblinks' Component 'Itemid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/42455
Webkit PDFs For TYPO3 SQL Injection Vulnerability and Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/42381
Joomla! 'com_slideshow' Component 'catid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/42427
TYPO3 Questionnaire (ke_questionnaire) Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/42369
RETIRED: clearBudget 'controller.class.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/42351
TYPO3 Branchenbuch 'mh_branchenbuch' Extension Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/42365
Joomla! Amblog Component Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/42334
JW Calendar For TYPO3 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/42367
TYPO3 Fe user statistic Extension Unspecified SQL Injection Vulnerability
http://www.securityfocus.com/bid/42366
Joomla! Teams Component Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/42335
Allinta CMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/42320
APBoard 'board.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42262
Joomla! FreiChat Component Unspecified HTML Injection Vulnerability
http://www.securityfocus.com/bid/41961
Multiple Pre Projects Applications Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/41750
Nuked-Klan Partenaires Module 'clic.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/42240
Joomla! CamelcityDB Component SQL Injection Vulnerability
http://www.securityfocus.com/bid/33254
PHP Photo Gallery Remote Command Execution and Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/41889
Hulihan Applications BXR SQL Injection and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/42247
Apple Mac OS X ColorSync (CVE-2011-0200) Integer Overflow Vulnerability
http://www.securityfocus.com/bid/48416
Apple Mac OS X 'getBandProcTiff()' TIFF Image Handling Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48437
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2011-3232 YARR Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49850
WebKit 'libxslt' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48840
WebKit CVE-2011-1457 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48856
WebKit MathML Tags Use-After-Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48824
WebKit CVE-2011-1797 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48858
WebKit CVE-2011-1453 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48855
WebKit CVE-2011-1462 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48857
WebKit CVE-2011-1288 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48854
WebKit 'NamedNodeMap.cpp' Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48852
WebKit CVE-2011-0255 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48853
WebKit CVE-2011-0238 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48850
WebKit CVE-2011-0253 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48851
WebKit SVG Tags 'animVal' Property Use-After-Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48827
WebKit Malformed XHTML Tags Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/48823
WebKit CVE-2011-0237 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48849
WebKit CVE-2011-0235 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48848
TUGZip 3.5 ZIP File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39180
WebKit FrameOwner Element Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48847
WebKit CVE-2011-0232 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48846
WebKit Style Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/46849
WebKit CVE-2011-0225 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48845
WebKit CVE-2011-0221 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48843
WebKit Frameset Elements Memory Corruption Vulnerability
http://www.securityfocus.com/bid/48820
WebKit Malformed 'TIFF' Image Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/48825
WebKit CVE-2011-0218 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48842
WebKit CVE-2011-0222 Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48844
WebKit CVE-2011-0164 Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/46703
rpm-python RPM File Handling Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49799
TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/49599
Cisco Unified Presence and Jabber XCP XML Bomb Denial of Service Vulnerability
http://www.securityfocus.com/bid/49819
Cogent DataHub Directory Traversal Vulnerability and Information Disclosure Vulnerability
http://www.securityfocus.com/bid/49610
Cogent DataHub Buffer Overflow Vulnerability and Integer Overflow Vulnerability
http://www.securityfocus.com/bid/49611
Red Hat Linux Kernel VLAN Packets Handling Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/48907
Linux Kernel IPv6 Fragment Identification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/48802
Linux Kernel EFI Partition Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/47796
Linux kernel l2cap Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48472
Linux Kernel 'fs/befs/linuxvfs.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/49256
Linux Kernel 'CIFSFindNext()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/49295
Linux Kernel Generic Receive Offload (GRO) CVE-2011-2723 Denial of Service Vulnerability
http://www.securityfocus.com/bid/48929
Linux Kernel eCryptfs Multiple Vulnerabilities
http://www.securityfocus.com/bid/49108
Linux Kernel 'inet_diag_bc_audit()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/48333
Linux Kernel 'perf_count_sw_cpu_clock' Event Denial of Service Vulnerability
http://www.securityfocus.com/bid/49152
Linux Kernel 'drivers/media/radio/si4713-i2c.c' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48804
Dovecot 'script-login' Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/48003
Dovecot Access Control List (ACL) Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/43690
Dovecot Header Name NULL Character Denial of Service Vulnerability
http://www.securityfocus.com/bid/47930
Dovecot Sieve Plugin Multiple Unspecified Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36377
Dovecot Insecure 'base_dir' Permissions Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37084
Dovecot Access Control List (ACL) Plugin Security Bypass Weakness
http://www.securityfocus.com/bid/41964
Perl CGI.pm Header Values Newline Handling Unspecified Security Vulnerability
http://www.securityfocus.com/bid/45145
Bugzilla Multiple Vulnerabilities
http://www.securityfocus.com/bid/45982
Bugzilla Response Splitting and Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/44618
Bugzilla Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49042
ACDSee FotoSlate 'id' Parameter 'PLP' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/49558
Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
http://www.securityfocus.com/bid/49957
ZOHO ManageEngine ADSelfService Plus Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/50071
WordPress WP-SpamFree Plugin 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/50070
WordPress Ninja Announcements Plugin 'ninja_annc.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/50069
Apple Mac OS X CoreMedia H.264 Encoded Movie Files Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/50068
Apple Mac OS X CoreFoundation (CVE-2011-0259) Memory Corruption Vulnerability
http://www.securityfocus.com/bid/50067
WebKit Multiple Unspecifeid Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/50066
Apple iTunes CoreAudio (CVE-2011-3252) Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/50065
BlackBerry Collaboration Service User Authentication Security Bypass Vulnerability
http://www.securityfocus.com/bid/50064
SilverStripe Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/50063
Contao CMS Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/50061
Geeklog BBCode Tags HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/50060
Kent Web Forum Unspecified HTML Injection Vulnerability
http://www.securityfocus.com/bid/50059
ABUS TVIP 11550/21550 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/50058
Kent Web Forum Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/50057
IBM WebSphere ILOG Rule Team Server 'project' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/50056
FluxBB 'X-Forwarded-For' Header SQL Injection Vulnerability
http://www.securityfocus.com/bid/50054
MyBB Advanced Forum Signatures 'afs_bar_right' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/50051
atvise webMI2ADS Web Server Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/50048
OPC Systems.NET RPC Packet Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/50047
2Moons Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/50046
Joomla! 'com_shop' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/50043
Joomla! 'com_br' Component 'state_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/50042
Joomla! 'com_tree' Component 'key' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/50041
Microsoft Silverlight & .NET Framework Inheritance Restriction Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49999
Microsoft Forefront Unified Access Gateway 'MicrosoftClient.Jar' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49983
Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-2011) Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/49981
Microsoft Forefront Unified Access Gateway Null Session Cookie Denial of Service Vulnerability
http://www.securityfocus.com/bid/49980
Microsoft Forefront Unified Access Gateway (CVE-2011-1895) HTTP Response Splitting Vulnerability
http://www.securityfocus.com/bid/49979
Microsoft Windows Active Accessibility DLL Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/49976
Microsoft Forefront Unified Access Gateway (CVE-2011-1897) Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/49974
Microsoft Windows Kernel 'Win32k.sys' TrueType Font File Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/49973
Microsoft Forefront Unified Access Gateway (CVE-2011-1896) Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/49972
Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1985) Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/49968
Microsoft Internet Explorer Virtual Function Table CVE-2011-2001 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49966
Microsoft Internet Explorer Body Element CVE-2011-2000 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49965
Microsoft Internet Explorer Select Element CVE-2011-1999 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49964
Microsoft Internet Explorer 'Jscript9.dll' CVE-2011-1998 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49963
Microsoft Internet Explorer OnLoad Event CVE-2011-1997 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49962
Microsoft Internet Explorer Option Element CVE-2011-1996 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49961
Microsoft Internet Explorer 'OLEAuto32.dll' CVE-2011-1995 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49960
Microsoft Internet Explorer Uninitalized Object CVE-2011-1993 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49947
Microsoft Windows Media Center DLL Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/49943
Microsoft Windows AFD Driver CVE-2011-2005 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/49941
0 件のコメント:
コメントを投稿