+ Ghost Domain Names: Revoked Yet Still Resolvable
ttps://www.isc.org/software/bind/advisories/cve-2012-1033
+ Multiple Vulnerabilities in Adobe Flashplayer
http://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_adobe_flashplayer4
InterScan Messaging Security Suite 7.1 Windows 版 Patch2 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1733
Chrome to stop checking Certificate Revocation List (CRL)?
http://isc.sans.edu/diary.html?storyid=12556
Red Hat Network Satellite Server spacewalk-backend Remote and Local Password Disclosure
http://www.securitytracker.com/id/1026644
JVNDB-2012-001323 PHP の php_variables.c 内の php_register_variable_ex 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001323.html
JVNDB-2012-001322 EMC Documentum xPlore におけるオブジェクトの存在を特定される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001322.html
JVNDB-2012-001321 複数の Siemens 製品の HMI Web サーバにおける任意のメモリロケーションからデータを読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001321.html
JVNDB-2012-001320 複数の Siemens 製品の HMI Web サーバにおけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001320.html
JVNDB-2012-001319 複数の Siemens 製品の HmiLoad におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001319.html
JVNDB-2012-001318 複数の Siemens 製品の HmiLoad におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001319.html
JVNDB-2012-001317 複数の Siemens 製品の HmiLoad におけるスタックベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001319.html
JVNDB-2012-001316 複数の Siemens 製品の TELNET デーモンにおけるアクセス権を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001316.html
JVNDB-2012-001315 複数の Siemens 製品における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001315.html
JVNDB-2012-001314 複数の Siemens 製品の HMI Web サーバにおける CRLF インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001314.html
JVNDB-2012-001313 複数の Siemens 製品の HMI Web サーバにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001313.html
JVNDB-2012-001312 複数の Siemens 製品の HMI Web サーバにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001312.html
JVNDB-2012-001311 複数の Siemens 製品の HMI Web サーバにおけるアクセス権を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001311.html
JVNDB-2012-001310 複数の Siemens 製品の HMI Web サーバにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001310.html
JVNDB-2012-001309 Project Open にクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001309.html
JVNDB-2012-001308 HTC 製 Android 端末に Wi-Fi 認証情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001308.html
JVNDB-2012-001307 Scriptsez.net の Ez Album における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001307.html
JVNDB-2012-001306 Vastal I-Tech Agent Zone の search.php における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001306.html
JVNDB-2012-001305 phpShowtime における任意のディレクトリおよびイメージファイルをリストアップされる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001305.html
JVNDB-2012-001304 phux Download Manager の download.php における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001304.html
JVNDB-2012-001303 TWiki におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001303.html
JVNDB-2012-001302 LuraWave JP2 Browser Plug-In におけるスタックベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001309.html
JVNDB-2012-001301 LuraWave JP2 ActiveX Control におけるスタックベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001301.html
JVNDB-2012-001300 SilverStripe の admin/EditForm におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001300.html
- Linux Kernel DRM 'drivers/gpu/drm/crm_crtc.c' IOCTL Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/51371
[ANNOUNCEMENT] HttpComponents HttpClient 4.1.3 (GA) release
http://www.apache.org/dist/httpcomponents/httpclient/RELEASE_NOTES-4.1.x.txt
[ANNOUNCE] MyFaces Core v2.1.6 Release
http://myfaces.apache.org/download.html
[ANNOUNCE] MyFaces Core v2.0.12 Release
http://myfaces.apache.org/download.html
[ANNOUNCE] Apache Directory LDAP API 1.0.0-M10 released
http://directory.apache.org/api/
[ANNOUNCE] ApacheDS 2.0.0-M5 released
http://directory.apache.org/apacheds/2.0/downloads.html
[ANNOUNCE] Apache Directory Studio 2.0 M2 released
http://directory.apache.org/studio/2.0/download
[ANNOUNCE] Scalr 2.5 supports PostgreSQL
http://scalr.net/features/databases/postgres/
データベースサーバのメンテナンスのお知らせ(2012年02月11日)
http://www.trendmicro.co.jp/support/news.asp?id=1681
[security bulletin] HPSBMU02736 SSRT100699 rev.2 - HP Business Availability Center (BAC) and Bus
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00031.html
eFronts Community++ v3.6.10 - Cross Site Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00032.html
[SECURITY] [DSA 2403-2] php5 security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00026.html
SQL Injection Vulnerability in Batavi 1.1.2
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00030.html
CVE-2012-0803: Apache CXF does not validate UsernameToken policies correctly
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00029.html
DEF CON 20 Capture the Flag Announcement
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00028.html
SimpleGroupware 0.742 Cross-Site-Scripting vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00027.html
[ MDVSA-2012:014 ] glpi
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00025.html
「iPhoneで人気のゲーム、Android版も登場!」――実は偽物
インストールすると「未公開です」、公開までの秒読みと広告を表示
http://itpro.nikkeibp.co.jp/article/NEWS/20120208/380382/?ST=security
RealPlayer Bugs Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026643
Basic Analysis And Security Engine "ip_addr[][]" SQL Injection Vulnerability
http://secunia.com/advisories/47857/
Hancom Office Hanword Image Processing Integer Overflow Vulnerabilities
http://secunia.com/advisories/47386/
IvanView JPEG2000 Image Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/47362/
XnView JPEG2000 Image Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/47352/
Apache CXF UsernameToken Policy Validation Security Bypass
http://secunia.com/advisories/47848/
ManageEngine ADManager Plus Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/47887/
Tube Ace "q" SQL Injection Vulnerability
http://secunia.com/advisories/47874/
OCaml Hash Collision Denial of Service Vulnerability
http://secunia.com/advisories/47853/
SUSE update for tomcat6
http://secunia.com/advisories/47913/
SUSE update for kernel
http://secunia.com/advisories/47900/
Snort Report "dbtype" Local File Inclusion Vulnerability
http://secunia.com/advisories/47871/
Red Hat update for Red Hat Network Satellite Server
http://secunia.com/advisories/47905/
Red Hat update for Red Hat Network Proxy
http://secunia.com/advisories/47906/
Red Hat update for Red Hat Enterprise MRG
http://secunia.com/advisories/47909/
HP-UX Apache Web Server Suite Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/47903/
Ubuntu update for linux-ti-omap4
http://secunia.com/advisories/47830/
Condor Multiple Format String Vulnerabilities
http://secunia.com/advisories/47891/
Mathopd Directory Traversal Vulnerability
http://secunia.com/advisories/47908/
RealPlayer Multiple Vulnerabilities
http://secunia.com/advisories/47896/
DoS/PoC: Typsoft FTP Server 1.10 Multiple Commands DoS
http://www.exploit-db.com/exploits/18469/
Ghostscript TrueType Bytecode Interpreter Heap-Based Memory Corruption Vulnerability
http://www.securityfocus.com/bid/42640
Ghostscript 'gs_type2_interpret()' Function NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/43932
Ghostscript 'gs_init.ps' With '-P-' Flag Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/40467
Ghostscript CVE-2010-4820 Library Search Path Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/51847
FreeBSD 'telnetd' Daemon Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/51182
Apache Tomcat HTTP DIGEST Authentication Multiple Security Weaknesses
http://www.securityfocus.com/bid/49762
Linux Kernel DRM 'drivers/gpu/drm/crm_crtc.c' IOCTL Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/51371
Linux Kernel 'net/ipv4/igmp.c' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51343
Linux Kernel XFS Filesystem 'fs/xfs/xfs_acl.c' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/51380
Symantec pcAnywhere Host Services Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51592
OpenSSL TLS Server Extension Parsing Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/44884
phpShowtime 'r' Parameter Directory Traversal Vulnerability
http://www.securityfocus.com/bid/51772
Mozilla Firefox/Thunderbird/SeaMonkey nsDOMAttribute Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/51755
Linux Kernel GHASH Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/50366
Ing. Punzenberger COPA-DATA GmbH zenon Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/51897
XnView JPEG2000 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/51896
IvanView JPEG2000 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/51895
eFront 'administrator.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51894
ManageEngine ADManager Plus Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/51893
Hancom Office Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/51892
TYPSoft FTP Server Multiple Commands Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/51891
Real Networks RealPlayer Atrac Sample Decoding Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51890
Real Networks RealPlayer 'coded_frame_size' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51889
Real Networks RealPlayer CVE-2012-0926 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51888
Real Networks RealPlayer CVE-2012-0925 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51887
Apache CXF UsernameToken Policy Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/51886
Real Networks RealPlayer 'VIDOBJ_START_CODE' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51885
Real Networks RealPlayer RV20 Frame Size Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51884
Real Networks RealPlayer 'rvrender' RMFF Flags Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51883
Simple Groupware 'export' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51882
Condor Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/51879
0 件のコメント:
コメントを投稿