phpMyAdmin 3.4.6-rc1 is released
http://sourceforge.net/news/?group_id=23067&id=303824
VMware hosted products address remote code execution vulnerability
http://www.vmware.com/security/advisories/VMSA-2011-0011.html
Ubuntu Security Notice : [USN-1222-2] Mozvoikko, ubufox, webfav update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36819
Debian : [DSA-2315-1] openoffice.org security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36820
PENTEST Consultores : Multiple vulnerabilities in SonicWall
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36814
Secunia : Cyrus IMAPd NTTP Authentication Bypass Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36821
Ubuntu Security Notice : [USN-1224-1] rsyslog vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36812
Ubuntu Security Notice : [USN-1225-1] Linux kernel vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36813
YGN Ethical Hacker Group : vTiger CRM 5.2.x <= Blind SQL Injection Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36817
YGN Ethical Hacker Group : vTiger CRM 5.2.x <= Remote Code Execution Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=36818
Steve Jobs氏の訃報を悪用した詐欺、早速Facebookに登場
http://itpro.nikkeibp.co.jp/article/NEWS/20111007/370321/?ST=security
JVNVU#555316 複数の STARTTLS 実装に脆弱性
http://jvn.jp/cert/JVNVU555316/index.html
JVN#84838479 サイボウズ Office におけるアクセス制限不備の脆弱性
http://jvn.jp/jp/JVN84838479/index.html
JVN#34980730 A-Form におけるアクセス制限不備の脆弱性
http://jvn.jp/jp/JVN34980730/index.html
JVN#03869266 宴会くんにおけるクロスサイトスクリプティングの脆弱性
http://jvn.jp/jp/JVN03869266/index.html
Autonomy Keyview Ichitaro Speed Reader Three Vulnerabilities
http://secunia.com/advisories/44225/
+ Multiple vulnerabilities in Apache Portable Runtime (APR) library and Apache HTTP Server
http://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_apache_portable
+ Moderate: xorg-x11-server security update
http://rhn.redhat.com/errata/RHSA-2011-1359.html
+ Moderate: xorg-x11 security update
http://rhn.redhat.com/errata/RHSA-2011-1360.html
Microsoft Security Bulletin Advance Notification for October 2011
http://technet.microsoft.com/en-us/security/bulletin/ms11-oct
Cisco Security Advisory: Directory Traversal Vulnerability in Cisco Network Admission Control Manage
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00024.html
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Applian
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00022.html
Active CMS 1.2.0 mod Cross-site Scripting Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00029.html
[SECURITY] [DSA 2317-1] icedove security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00028.html
[ MDVSA-2011:143 ] rpm
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00027.html
[SECURITY] [DSA 2316-1] quagga security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00026.html
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2011-10/msg00023.html
三井住友銀行をかたるフィッシングに注意、ウイルスで暗証番号を盗む
契約者番号や暗証番号などを要求、三菱東京UFJ銀行を装った手口と酷似
http://itpro.nikkeibp.co.jp/article/NEWS/20111006/370305/?ST=security
新たな「Androidウイルス」出現、ブログを使ってアップデート
米トレンドマイクロが報告、「予備の司令塔サーバーも通知」
http://itpro.nikkeibp.co.jp/article/NEWS/20111006/370303/?ST=security
Apache HTTP Server mod_proxy reverse proxy issue
http://isc.sans.edu/diary.html?storyid=11752
Critical Control 4 - Secure Configurations for Network Devices such as Firewalls, Routers, and Switches
http://isc.sans.edu/diary.html?storyid=11746
X Input Validation Flaw in ProcRenderAddGlyphs() Lets Local Users Obtain Memory Contents and Deny Service
http://www.securitytracker.com/id/1026149
X GLX Input Validation Flaw Lets Remote Authenticated Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026148
MyBB Compromised Source Packages Backdoor Security Issue
http://secunia.com/advisories/46300/
Xoops Cross-Site Scripting and Script Insertion Vulnerabilities
http://secunia.com/advisories/46238/
Drupal OG Features Module Security Bypass Security Issue
http://secunia.com/advisories/46331/
WordPress User Avatar Plugin "src" Arbitrary File Upload
http://secunia.com/advisories/46335/
Red Hat update for kernel
http://secunia.com/advisories/46304/
Plone Two Vulnerabilities
http://secunia.com/advisories/46323/
Red Hat update for openswan
http://secunia.com/advisories/46306/
Drupal Echo Module Unspecified Cross-Site Scripting and Spoofing Vulnerabilities
http://secunia.com/advisories/46334/
Tine 2.0 "file" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/46302/
Drupal Rate Module "content_type" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/46318/
Openswan IKE Daemon NULL Pointer Dereference Denial of Service Vulnerability
http://secunia.com/advisories/46327/
concrete5 Path Disclosure Weakness and Cross-Site Scripting Vulnerability
http://secunia.com/advisories/46215/
Iceni Products Flate Compression Parser Buffer Overflow Vulnerability
http://secunia.com/advisories/46320/
Cisco Adaptive Security Appliances Security Bypass and Denial of Service Vulnerabilities
http://secunia.com/advisories/46330/
Debian update for icedove
http://secunia.com/advisories/46270/
Debian update for quagga
http://secunia.com/advisories/46274/
Spree Unspecified Code Execution Vulnerability
http://secunia.com/advisories/46307/
Drupal Homebox Module Script Insertion Vulnerability
http://secunia.com/advisories/46332/
Drupal Petition Node Module Script Insertion Vulnerability
http://secunia.com/advisories/46333/
WordPress WP-PostRatings Plugin "[ratings]" Shortcode SQL Injection Vulnerability
http://secunia.com/advisories/46328/
SUSE update for librsvg
http://secunia.com/advisories/46317/
WordPress Redirection Plugin "Referer" Header Script Insertion Vulnerability
http://secunia.com/advisories/46310/
Cisco Firewall Services Module Security Bypass and Denial of Service Vulnerabilities
http://secunia.com/advisories/46278/
IBM Rational AppScan Products Two Vulnerabilities
http://secunia.com/advisories/46329/
IBM Rational AppScan Products Two Vulnerabilities
http://secunia.com/advisories/46326/
Cisco Network Admission Control Directory Traversal Vulnerability
http://secunia.com/advisories/46309/
Kolab Server ByteRange Filter Denial of Service Vulnerability
http://secunia.com/advisories/46293/
Apache HTTP Server mod_proxy Reverse Proxy Mode Security Bypass Weakness
http://secunia.com/advisories/46288/
XOOPS Data Processing Two Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/ADV-2011-2151.php
IBM Rational AppScan Import Functionality Code Execution Vulnerabilities
http://www.vupen.com/english/ADV-2011-2150.php
Apache HTTP Server "mod_proxy" Reverse Proxy Exposure Vulnerability
http://www.vupen.com/english/ADV-2011-2149.php
Openswan IKE Invalid Key Length Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2011-2148.php
LibreOffice Word Documents Processing Multiple Memory Corruptions
http://www.vupen.com/english/ADV-2011-2147.php
Drupal OG Features Module Access Restrictions Bypass Vulnerability
http://www.vupen.com/english/ADV-2011-2146.php
Drupal Echo Module Cross Site Scripting and Phishing Vulnerabilities
http://www.vupen.com/english/ADV-2011-2145.php
Drupal Rate Module AJAX Callback Cross Site Scripting Vulnerability
http://www.vupen.com/english/ADV-2011-2144.php
Drupal Homebox for Organic Groups Cross Site Scripting Vulnerability
http://www.vupen.com/english/ADV-2011-2143.php
Drupal Petition Node Signature Handling Cross Site Scripting Vulnerability
http://www.vupen.com/english/ADV-2011-2142.php
Cisco ASA Security Bypass and Multiple Denial of Service Vulnerabilities
http://www.vupen.com/english/ADV-2011-2141.php
Cisco Firewall Services Module Security Bypass and Denial of Service
http://www.vupen.com/english/ADV-2011-2140.php
Cisco Network Admission Control Manager Directory Traversal Vulnerability
http://www.vupen.com/english/ADV-2011-2139.php
Iceni Argus PDF Parser Flate-compressed Content Stack Overflow
http://www.vupen.com/english/ADV-2011-2138.php
Cyrus IMAPd NNTP Server Remote Authentication Bypass Vulnerability
http://www.vupen.com/english/ADV-2011-2137.php
REMOTE: Opera 10/11 (bad nesting with frameset tag) Memory Corruption
http://www.exploit-db.com/exploits/17936
Mozilla Firefox/SeaMonkey/Thunderbird CVE-2011-2999 Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/49848
Mozilla Firefox RegExp Remote Integer Underflow Vulnerability
http://www.securityfocus.com/bid/49809
Autonomy KeyView LZH Archive File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48018
Autonomy KeyView Microsoft Office Document Filter Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48020
Autonomy KeyView Filter XLS File Viewer Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48017
Autonomy KeyView Applix Document Filter Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48021
Autonomy KeyView Filter ZIP File Viewer Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48016
Autonomy KeyView Filter RTF Hyperlink Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48019
Adobe Flash Player CVE-2011-2444 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/49710
Adobe Flash Player CVE-2011-2428 Logic Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49716
Adobe Flash Player CVE-2011-2427 AVM Stack Overflow Vulnerability
http://www.securityfocus.com/bid/49715
Adobe Flash Player CVE-2011-2430 Streaming Media Logic Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49717
Adobe Flash Player CVE-2011-2429 Security Control Bypass Information Disclosure Vulnerability
http://www.securityfocus.com/bid/49718
Adobe Flash Player CVE-2011-2426 AVM Stack Overflow Vulnerability
http://www.securityfocus.com/bid/49714
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2011-3232 YARR Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49850
Real Networks RealPlayer (CVE-2011-2947) Cross-Zone Scripting Vulnerability
http://www.securityfocus.com/bid/49178
Opera Web Browser Frameset Constructs Memory Corruption Vulnerability
http://www.securityfocus.com/bid/47906
Mozilla Firefox/Thunderbird/SeaMonkey Enter Key Dialog Bypass Weakness
http://www.securityfocus.com/bid/49811
Mozilla Firefox/Thunderbird/SeaMonkey OGG headers Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/49808
Mozilla Firefox/Thunderbird/SeaMonkey CVE-2011-3000 HTTP Response Splitting Vulnerability
http://www.securityfocus.com/bid/49849
Mozilla Firefox/Thunderbird/SeaMonkey Enter Key Dialog Bypass Vulnerability
http://www.securityfocus.com/bid/49837
Linux Kernel 'CIFSFindNext()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/49295
DBHcms 'editmenu' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/44378
w-Agora 'search.php' Local File Include and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/44370
Chipmunk Board 'forumID' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43648
Joomla! JE Guestbook Component SQL Injection and Local File Include Vulnerabilities
http://www.securityfocus.com/bid/43605
Joomla Club Manager Component 'cm_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43821
CAG's Simple CMS Multiple Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/43719
DNET Live-Stats 'team.rc5-72.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/43708
Joomla! JE Directory Component 'catid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43630
Sun Solaris Trusted Extensions Labeled Networking Security Bypass Vulnerability
http://www.securityfocus.com/bid/30602
webSPELL 'asearch.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/43579
GetSimple CMS 'admin/changedata.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/43593
WebAsyst Shop-Script 'index.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/40349
Linux Kernel 'agp_ioctl()' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/47534
Apache HTTP Server CVE-2011-3192 Denial Of Service Vulnerability
http://www.securityfocus.com/bid/49303
Linux Kernel Generic Receive Offload (GRO) CVE-2011-2723 Denial of Service Vulnerability
http://www.securityfocus.com/bid/48929
Linux Kernel 'taskstats.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/48383
Linux Kernel 'agp_allocate_memory/agp_create_user_memory' Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/47535
Linux Kernel 'drivers/char/tpm/tpm.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/46866
Linux Kernel 'perf_count_sw_cpu_clock' Event Denial of Service Vulnerability
http://www.securityfocus.com/bid/49152
Linux Kernel 'x86_assign_hw_event()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/48580
Linux Kernel 'agp_ioctl()' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/47843
Linux Kernel eCryptfs Multiple Vulnerabilities
http://www.securityfocus.com/bid/49108
Linux Kernel 'mremap()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/47321
VLC Media Player Demuxer Denial of Service Vulnerability
http://www.securityfocus.com/bid/50004
UniOPC IP*Works! SSL Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/50003
X.Org X11 Local Privilege Escalation Vulnerability and Memory Leak Vulnerability
http://www.securityfocus.com/bid/50002
Active CMS 'mod' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/50001
XOOPS HTML Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/49995
Microsoft October 2011 Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/49994
MyBB Compromised Source Packages Backdoor Vulnerability
http://www.securityfocus.com/bid/49993
Tine 'file' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/49992
Plone Unspecified Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/49991
tsmim Lessons Library 'show.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/49990
spree Unspecified Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/49987
WordPress WP-PostRatings Plugin 'month' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/49986
0 件のコメント:
コメントを投稿