- Moderate: pidgin security update
http://rhn.redhat.com/errata/RHSA-2011-1371.html
bind10-devel-20111014 now available
https://lists.isc.org/mailman/listinfo/bind10-users
[ANNOUNCE] pgpoolAdmin 3.1.0 released
http://pgfoundry.org/projects/pgpool/
Squid 3.1.16 released
http://www.squid-cache.org/Versions/v3/3.1/
Squid 3.2.0.13 released
http://www.squid-cache.org/Versions/v3/3.2/RELEASENOTES.html
JVNVU#800227 OneOrZero AIMS に複数の脆弱性
http://jvn.jp/cert/JVNVU800227/index.html
JVN#44496332 EC-CUBE における SQL インジェクションの脆弱性
http://jvn.jp/jp/JVN44496332/index.html
JVN#51216285 DBD::mysqlPP における SQL インジェクションの脆弱性
http://jvn.jp/jp/JVN51216285/index.html
JVNTA11-286A Apple Mac OS Xにおける複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNTA11-286A/index.html
JVNVU#971123 Apple Mac OS Xにおける複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNVU971123/index.html
JVNTA11-284A Microsoft 製品における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNTA11-284A/index.html
HTB Team : [HTB23049] Pretty Link WordPress Plugin - Cross-site Scripting Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36873
HTB Team : [HTB23048] BugFree - Cross-site Scripting Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36874
Independant Researcher : Internet Explorer - Multiple Code Execution Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36879
SEC Consult : [SEC Consult SA-20111012-0] Microsoft Forefront UAG - Remote Access Agent Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36880
Apple : [APPLE-SA-2011-10-12-6 ] iOS - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36876
Apple : [APPLE-SA-2011-10-12-5 ] iOS - Memory Corruption Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36877
Apple : [APPLE-SA-2011-10-12-2] Apple TV - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36878
Emaze Networks : ZOHO - ManageEngine ADSelfService and Administrative Access - Authentication Bypass Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36855
Hewlett-Packard : [HPSBMU02710 SSRT100601] HP - Onboard Administrator (OA) - Security Bypass Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36857
iDEFENSE : Microsoft - Internet Explorer - Memory Corruption Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36875
Mandriva : [MDVSA-2011:148] Samba - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36864
Red Hat : [RHSA-2011:1364-01] kdelibs - Spoofing Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36854
Ubuntu Security Notice : [USN-1227-1] Linux - kernel - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36853
Debian : [DSA-2319-1] Policykit - Privilege Escalation Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36846
Debian : [DSA-2320-1] dokuwiki - Cross-site Scripting Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36847
Debian : [DSA-2321-1] Moin - Cross-site Scripting Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36848
Debian : [DSA-2322-1] Bugzilla - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36849
Gentoo Linux : [GLSA 201110-06] PHP - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36859
Independant Researcher : Google - App Engine SDK - Code Execution Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36863
Mandriva : [MDVSA-2011:145] libxml2 - Double Free Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36850
Mandriva : [MDVSA-2011:146] CUPS - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36851
Mandriva : [MDVSA-2011:147] CUPS - Buffer Overflow Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36852
Microsoft : [MS11-078] .NET Framework and Microsoft Silverlight - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36865
Microsoft : [MS11-081] Internet Explorer - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36866
Microsoft : [MS11-075] Microsoft - Active Accessibility - Code Execution Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36867
Microsoft : [MS11-076] Windows - Media Center - Code Execution Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36868
Microsoft : [MS11-077] Windows - Kernel - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36869
Microsoft : [MS11-079] Microsoft - Frontend Unified Access Gateway - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36870
Microsoft : [MS11-080] Anciallary Function Driver - Privilege Escalation Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36871
Microsoft : [MS11-082] Host Integration Server - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36872
Gentoo Linux : [GLSA 201110-07] vsftpd - Denial-Of-Service Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36858
Gentoo Linux : [GLSA 201110-05] GnuTLS - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36860
Gentoo Linux : [GLSA 201110-04] Dovecot - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36861
Gentoo Linux : [GLSA 201110-03] - Bugzilla - Multiple Issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36862
NGS Secure Research : Apple - OSX and iPhone ImageIO - Heap Overflow Issue
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36856
Critical Control 9 - Controlled Access Based on the Need to Know
http://isc.sans.edu/diary.html?storyid=11812
Oracle Critical Patch Update Pre-Release Announcement - October 2011
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
Oracle Java SE Critical Patch Update Pre-Release Announcement - October 2011
http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
JVN#07414354 DAEMON Tools におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN07414354/index.html
JVNDB-2011-002358 Cherokee の Cherokee-admin におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002358.html
JVNDB-2011-002357 Cherokee の generate_admin_password 関数における admin パスワードを推測される脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002357.html
JVNDB-2011-002356 Linux kernel の net/core/net_namespace.c におけるサービス運用妨害 (メモリ破損) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002356.html
JVNDB-2011-002355 Plone で使用される Zope における任意のコマンドを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002355.html
JVNDB-2011-002354 Plone の CMFEditions コンポーネントにおけるサブオブジェクトにアクセスされる脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002354.html
JVNDB-2011-002353 gitolite の Admin Defined Commands (ADC) 機能におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002353.html
JVNDB-2011-002352 EtherApe の add_conversation 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002352.html
JVNDB-2011-000085 DAEMON Tools におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000085.html
JVNDB-2011-000084 Pligg におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000084.html
JVNDB-2011-000083 Plume におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000083.html
JVNDB-2011-002351 Apache HTTP Server の mod_proxy モジュールにおけるイントラネットサーバにリクエストを送信される脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002351.html
JVNDB-2011-002350 IBM AIX の QLogic adapters 用 Fibre Channel ドライバにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002350.html
JVNDB-2011-002349 Check Point の 複数の製品における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002349.html
JVNDB-2011-002348 Exim の src/dkim.c 内の dkim_exim_verify_finish 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002348.html
JVNDB-2011-002347 Ted Felix acpid の acpid.c におけるサービス運用妨害 (デーモンハング) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002347.html
JVNDB-2011-002346 Linux kernel の net/dns_resolver/dns_key.c におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002346.html
JVNDB-2011-002345 RealNetworks RealPlayer の ActiveX コントロールにおけるクロスゾーンスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002345.html
JVNDB-2011-002344 Adobe Photoshop Elements におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002344.html
JVNDB-2011-002343 Quassel の CtcpParser::packedReply メソッドにおけるサービス運用妨害 (クラッシュ) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002343.html
JVNDB-2011-002342 VMware の Spring Framework および Spring Security におけるセキュリティ制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002342.html
JVNDB-2011-002341 UPnP 対応の複数のルータにアクセス制限不備の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002341.html
JVNDB-2011-002340 Iceni Argus にバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002340.html
iDefense Security Advisory 10.12.11: Apple Mobile OfficeImport Framework Word Document Parsing Memor
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00084.html
iDefense Security Advisory 10.12.11: Apple MobileSafari Attachment Viewing Cross Site Scripting Vuln
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00083.html
Multiple G-WAN vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00082.html
SEC Consult SA-20111012-0 :: Client-side remote file upload & command execution in M
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00080.html
VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00079.html
Security-Assessment.com Advisory: Destination Search Admin Console Access Control Bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00081.html
Two Remote Code Execution Vulnerabilities in Internet Explorer
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00078.html
iDefense Security Advisory 10.11.11: Microsoft Internet Explorer Object Handling Memory Corruption V
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00076.html
APPLE-SA-2011-10-12-6 Numbers for iOS v1.5
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00075.html
APPLE-SA-2011-10-12-5 Pages for iOS v1.5
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00074.html
APPLE-SA-2011-10-12-4 Safari 5.1.1
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00077.html
APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00073.html
APPLE-SA-2011-10-12-2 Apple TV Software Update 4.4
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00071.html
APPLE-SA-2011-10-12-1 iOS 5 Software Update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00072.html
CORE-2011-0106: Microsoft Publisher 2007 Pubconv.dll Memory Corruption
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00070.html
Multiple vulnerabilities in BugFree
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00067.html
Multiple vulnerabilities in Pretty Link WordPress Plugin
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00068.html
LedgerSMB 1.3.0 released, includes anti-XSRF framework
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00066.html
[ MDVSA-2011:148 ] samba
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00064.html
Google App Enging SDK Code Execution Vulnerability (CVE 2011-1364)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00065.html
Joomla Camelcitydb2 2.2 SQL Injection
http://securityreason.com/securityalert/8465
E-Xoopport Samsara 3.1 eCal Module Blind SQL Injection
http://securityreason.com/securityalert/8464
Joomla Component Multiple Blind SQL Injection Vulnerabilities
http://securityreason.com/securityalert/8463
WAnewsletter v 2.1.2 SQL Injection Vulnerability
http://securityreason.com/securityalert/8462
Joomla Slideshow SQL Injection
http://securityreason.com/securityalert/8461
Virtue Book Store SQL Injection
http://securityreason.com/securityalert/8460
Nuked-Klan Partenaires NK 1.5 Blind SQL Injection
http://securityreason.com/securityalert/8459
Joomla Restaurant Guide Cross Site Scripting / Local File Inclusion / SQL Injection
http://securityreason.com/securityalert/8458
GeekLog 1.3.8 SQL Injection
http://securityreason.com/securityalert/8457
Amblog 1.0 Joomla Component Multiple SQL Injection Vulnerabilities
http://securityreason.com/securityalert/8456
Atmail WebMail < v6.2.0 Reflected XSS
http://securityreason.com/securityalert/8455
TimeTrack 1.2.4 Joomla Component Multiple SQL Injection Vulnerabilities
http://securityreason.com/securityalert/8454
allinta CMS SQL injection vulnerability
http://securityreason.com/securityalert/8453
Cisco TelePresence Video Communication Server Input Validation Flaw Permits Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1026186
Mac OS X Multiple Flaws Lets Local Users Gain Elevated Privileges and Remote Users Execute Arbitrary Code and Deny Service
http://www.securitytracker.com/id/1026184
VU#800227: OneOrZero AIMS authentication bypass and SQLi vulnerabilities
http://www.kb.cert.org/vuls/id/800227
D-Link DIR-685 Xtreme N Storage Router Encryption Failure Weakness
http://secunia.com/advisories/46380/
WordPress Pretty Link Plugin Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/46432/
IBM OS/400 HTTP Server mod_proxy Reverse Proxy Mode Security Bypass Weakness
http://secunia.com/advisories/46414/
DAEMON Tools Unspecified Denial of Service Vulnerability
http://secunia.com/advisories/46416/
Apple TV Multiple Vulnerabilities
http://secunia.com/advisories/46415/
WordPress teachPress Plugin "root" Two Local File Inclusion Vulnerabilities
http://secunia.com/advisories/46436/
Apple iOS Multiple Vulnerabilities
http://secunia.com/advisories/46377/
Simple Machines Forum Multiple Vulnerabilities
http://secunia.com/advisories/46386/
VMware ESX / ESXi Server Multiple Vulnerabilities
http://secunia.com/advisories/46397/
BugFree Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/46428/
Apple Safari Multiple Vulnerabilities
http://secunia.com/advisories/46412/
Drupal Certificate Login Module SQL Injection Vulnerability
http://secunia.com/advisories/46393/
Minitube Insecure Temporary Files Security Issue
http://secunia.com/advisories/46429/
Apple Mac OS X Multiple Vulnerabilities
http://secunia.com/advisories/46417/
Apple Pages for iOS OfficeArtMetafileHeader Record Parsing Vulnerability
http://secunia.com/advisories/46418/
Apple Numbers for iOS Two Vulnerabilities
http://secunia.com/advisories/46419/
Fedora update for phpPgAdmin
http://secunia.com/advisories/46426/
REMOTE: PcVue 10.0 SV.UIGrdCtrl.1 'LoadObject()/SaveObject()' Trusted DWORD Vulnerability
http://www.exploit-db.com/exploits/17975/
REMOTE: Mozilla Firefox Array.reduceRight() Integer Overflow
http://www.exploit-db.com/exploits/17976/
REMOTE: JBoss AS Remote Exploit v2
http://www.exploit-db.com/exploits/17977/
DoS/PoC: MS11-077 .fon Kernel-Mode Buffer Overrun PoC
http://www.exploit-db.com/exploits/17978/
Linux Kernel Unix Sockets Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/45037
Linux Kernel Futex Macros Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/44754
Xen 'drivers/xen/blkback/blkback.c' Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/45029
Linux Kernel 'CHELSIO_GET_QSET_NUM' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43221
XFS Deleted Inode Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/42527
Linux Kernel 'net/sched/act_police.c' File Memory Leak Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/42529
Linux Kernel Xen Hypervisor Implementation Denial of Service Vulnerability
http://www.securityfocus.com/bid/43578
Linux Kernel 'execve()' Memory Expansion 'OOM-killer' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/45004
Linux Kernel 'hci_uart_tty_open()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/45014
Xen 'vbd_create()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/45795
Linux Kernel 'net/core/filter.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/44758
Linux Kernel 'net/' Subsystem Socket Filter CVE-2010-4161 Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/45064
Linux Kernel 'drivers/scsi/gdth.c' IOCTL Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44648
Linux Kernel 'ipc/sem.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43809
Linux Kernel 'SNDRV_HDSP_IOCTL_GET_CONFIG_INFO' IOCTL Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/45058
Linux Kernel 'hdsp.c' IOCTL Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/45063
Linux Kernel TIOCGICOUNT 'serial_core.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43806
Linux Kernel 'hmid_ds structure' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/45054
Linux Kernel 'inet_diag.c' Netlink Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/44665
Linux Kernel Multiple 'net/' Subsystems Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/44630
Linux Kernel Reliable Datagram Sockets (RDS) Protocol Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44219
Linux Kernel Reliable Datagram Sockets (RDS) Protocol Local Integer Overflow Vulnerability
http://www.securityfocus.com/bid/44549
Linux Kernel 'setup_arg_pages()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/44301
Linux Kernel Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/44354
Linux Kernel ALSA 'sound/core/control.c' Local Integer Overflow Vulnerability
http://www.securityfocus.com/bid/43787
Xen 'blkback/blktap/netback' Leaked Kernel Thread Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/45039
Linux Kernel 'sctp_outq_flush()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/43480
Linux Kernel 'do_io_submit()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/43353
Linux Kernel 'XFS_IOC_FSGETXATTR' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43022
Linux Kernel GFS2 Directory Rename NULL Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42124
Linux Kernel EXT4 Multiple Local Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/42477
Linux Kernel 'io_submit_one()' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/44755
Linux Kernel USB interface Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/39042
Linux Kernel 'ecryptfs_uid_hash()' Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/42237
WebKit Multiple Unspecifeid Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/50066
Apple iPhone/iPad/iPod touch Prior to iOS 5 Multiple Vulnerabilities
http://www.securityfocus.com/bid/50086
Linux Kernel 'mpt2sas' Local Privilege Escalation and Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/47185
'glibc' Library 'locale/programs/locale.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/47370
GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability
http://www.securityfocus.com/bid/46563
MIT Kerberos KDC LDAP File Descriptor Leak Denial Of Service Vulnerability
http://www.securityfocus.com/bid/46265
MIT Kerberos 5 1.3.x Checksum Multiple Remote Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/45118
MIT Kerberos KDC Principal Name LDAP Request NULL Pointer Denial Of Service Vulnerability
http://www.securityfocus.com/bid/46271
WordPress Filedownload Local File Disclosure Vulnerability
http://www.securityfocus.com/bid/49669
PHP Versions Prior to 5.3.7 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49241
PcVue ActiveX Control Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49795
phpPgAdmin Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/49914
Microsoft Internet Explorer Option Element CVE-2011-1996 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49961
Microsoft Forefront Unified Access Gateway 'MicrosoftClient.Jar' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49983
Microsoft Internet Explorer Select Element CVE-2011-1999 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49964
Mozilla Firefox/Thunderbird/SeaMonkey 'Array.reduceRight()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48372
Microsoft Silverlight & .NET Framework Inheritance Restriction Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49999
Microsoft Windows Active Accessibility DLL Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/49976
Apache Tomcat 'sort' and 'orderBy' Parameters Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/45015
Simple Machines Forum Cross-Site Scripting and Spoofing Vulnerabilities
http://www.securityfocus.com/bid/50103
Apple Mac OS X CVE-2011-0231 Security Vulnerability
http://www.securityfocus.com/bid/50098
Supermicro IPMI Web Interface Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/50097
WordPress Pretty Link Plugin Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/50096
0 件のコメント:
コメントを投稿