2012年4月5日木曜日

5日 木曜日、大安


+ BIND 9.6-ESV-R6, 9.7.5, 9.8.2 released
https://deepthought.isc.org/article/AA-00646
https://deepthought.isc.org/article/AA-00644
https://deepthought.isc.org/article/AA-00645

+ Multiple vulnerabilities in Samba
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_samba
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2522
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2694

CentOS alert CESA-2012:0451 (rpm)
http://lwn.net/Alerts/490649/
http://lwn.net/Alerts/490650/

Buffer Overflow Vulnerabilities in the Cisco WebEx Player
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex

データベースサーバのメンテナンスのお知らせ(2012年4月5日)
http://www.trendmicro.co.jp/support/news.asp?id=1761

コンピュータウイルス・不正アクセスの届出状況[3月分および第1四半期]について
http://www.ipa.go.jp/security/txt/2012/04outline.html

カスペルスキーが「DNS Changer」の注意喚起、7月以降にWebに接続できなくなる恐れ
http://itpro.nikkeibp.co.jp/article/NEWS/20120404/389311/?ST=security

ISC Feature of the Week: Diary/Infocon/Event Notifications
http://isc.sans.edu/diary.html?storyid=12895

HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks
http://www.securitytracker.com/id/1026889

Cisco WebEx Player Buffer Overflows Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026888

Wonderware Information Server Bugs Permit Cross-Site Scripting, SQL Injection, and Denial of Service Attacks
http://www.securitytracker.com/id/1026887

Wonderware Historian Client Bugs Permit Cross-Site Scripting, SQL Injection, and Denial of Service Attacks
http://www.securitytracker.com/id/1026886

HP-UX Unspecified Flaw in DCE Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026885

VMware Multiple Security Bypass and Code Execution Vulnerabilities
http://www.vupen.com/english/ADV-2012-0193.php

Libpng "png_set_text_2()" Data Processing Memory Corruption
http://www.vupen.com/english/ADV-2012-0192.php

TYPO3 Insecure Unserialize and Multiple Information Disclosure
http://www.vupen.com/english/ADV-2012-0191.php

Cisco IOS Software Reverse SSH Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0190.php

Cisco IOS Software RSVP Remote Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0189.php

Cisco IOS Software Traffic Optimization Features Multiple Vulnerabilities
http://www.vupen.com/english/ADV-2012-0188.php

Cisco IOS Software Multicast Source Discovery Protocol DoS Vulnerability
http://www.vupen.com/english/ADV-2012-0187.php

Cisco IOS Software Network Address Translation DoS Vulnerability
http://www.vupen.com/english/ADV-2012-0186.php

Cisco IOS Internet Key Exchange Remote Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0185.php

Cisco IOS Software Smart Install Remote Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0184.php

Cisco IOS Software AAA Command Authorization Bypass Vulnerability
http://www.vupen.com/english/ADV-2012-0183.php

Cisco IOS Software Zone-Based Firewall Memory Leak Vulnerabilities
http://www.vupen.com/english/ADV-2012-0182.php

osCMax Multiple Vulnerabilities
http://secunia.com/advisories/48678/

IBM Tivoli Event Pump Password Disclosure Security Issue
http://secunia.com/advisories/48717/

PicoPublisher Two SQL Injection Vulnerabilities
http://secunia.com/advisories/48604/

Csound pv_import Integer Overflow Vulnerability
http://secunia.com/advisories/48719/

Csound Integer Overflow and Buffer Overflow Vulnerabilities
http://secunia.com/advisories/48148/

HP Business Availability Center Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/48677/

Apple Mac OS X update for Java
http://secunia.com/advisories/48648/

EPiServer SiteSeeker Module Click Tracking Cross-Site Scripting Vulnerability
http://secunia.com/advisories/48696/

Red Hat update for rpm
http://secunia.com/advisories/48716/

Sysax Multi Server "file" File Disclosure Vulnerability
http://secunia.com/advisories/48673/

MinaliC Three Buffer Overflow Vulnerabilities
http://secunia.com/advisories/45462/

RPM Package Manager Header Parsing Vulnerabilities
http://secunia.com/advisories/48651/

REMOTE: NetOp Remote Control Client 9.5 Buffer Overflow',
http://www.exploit-db.com/exploits/18697

DoS/PoC:  Xion Audio Player 1.0.127 (.aiff) Denial of Service Vulnerability
http://www.exploit-db.com/exploits/18698

Arbor Networks Peakflow SP 'index/' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52881

libpng 'png_set_text_2()' Function Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52830

phpPaleo 'lang' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/52530

Google Chrome Prior to 17.0.963.83 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/52674

libpng 'png_inflate()' Function Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/52453

OCS Inventory NG Unspecified HTML Injection Vulnerability
http://www.securityfocus.com/bid/50011

RPM Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/52865

Netop Remote Control '.dws' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/47631

osCMax Multiple SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/52886

Tufin SecureTrack Cross Site Scripting and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/52885

Sectool DBus File Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/52884

IBM Event Pump for z/OS Password Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52883

Cisco WebEx WRF File Format Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/52882

Hotel Booking Portal 'country' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/52879

e-ticketing 'loginscript.php' Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/52878

Oracle Java SE Multiple Unspecified Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/52877

Csound 'main()' Stack Based Buffer Overflow And Integer-overflow Vulnerabilities
http://www.securityfocus.com/bid/52876

Csound 'pv_import()' Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/52875

Euroling AB SiteSeeker 'click tracking' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52874

MinaliC Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/52873

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)