:: IT Security Neophyte Investigator's MEMO ::: 26日木曜日、先勝

2012年7月26日木曜日

26日木曜日、先勝

+ RHSA-2012:1116 Moderate: perl-DBD-Pg security update
http://rhn.redhat.com/errata/RHSA-2012-1116.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1151

+ UPDATE: HPSBUX02795 SSRT100878 rev.2 - HP-UX Running BIND, Remote Denial of Service (DoS)
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?javax.portlet.tpst=ba847bafb2a2d782fcbb0710b053ce01&javax.portlet.prp_ba847bafb2a2d782fcbb0710b053ce01=wsrp-navigationalState%3DdocId%25253Demr_na-c03388901%25257CdocLocale%25253Dja_JP&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken

+ UPDATE: Microsoft Security Advisory (2737111) Vulnerabilities in Microsoft Exchange and FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution
http://technet.microsoft.com/en-us/security/advisory/2737111

+ マイクロソフトセキュリティアドバイザリ (2737111) Microsoft Exchange および FAST Search Server 2010 for SharePoint の解析の脆弱性により、リモートでコードが実行される
http://technet.microsoft.com/ja-jp/security/advisory/2737111

+ About the security content of Safari 6 released
http://support.apple.com/kb/HT5400

+ Mac OS X 10.8 Mountain Lion released
http://www.apple.com/osx/

+ Apple Safari Prior to 6.0 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54669
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0678
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0679
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0680
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0682
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1520
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3589
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3590
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3591
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3592
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3593
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3594
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3595
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3596
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3597
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3599
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3600
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3603
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3604
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3605
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3608
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3609
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3610
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3611
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3615
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3618
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3620
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3625
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3626
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3627
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3628
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3629
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3630
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3631
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3633
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3634
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3635
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3636
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3637
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3638
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3639
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3640
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3641
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3642
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3644
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3645
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3646
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3653
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3655
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3656
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3661
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3663
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3664
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3665
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3666
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3667
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3668
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3669
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3670
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3674
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3678
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3679
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3680
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3681
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3682
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3686
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3689
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3690
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3691
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3693
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3694
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3695
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3696
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3697
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3650

ウイルス対策製品検出用検索エンジン 3.5.2285 および Trend Micro Network VirusWall Enforcer 1500i/3500i バージョン 3.2用 Critical Patch ビルド 1004 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1809

Advisory: Upgrade to Sophos Anti-Virus for Mac, version 8
http://www.sophos.com/en-us/support/knowledgebase/116709.aspx

Urgent from Sybase: Security vulnerabilities in ASE 15.0.3 and later. Plus potential hang and data loss issue.
http://www.sybase.com/detail?id=1098877

Urgent from Sybase: Security vulnerability ASE 15.0.3 and Later. This also affects Replication Server, OpenServer/SDK, IQ, SQL Anywhere, EA Server, RAP, and Event Stream Processor.
http://www.sybase.com/detail?id=1098869

アノニマスが日本を攻撃
予兆検知と対策マニュアルの整備が急務
http://itpro.nikkeibp.co.jp/article/COLUMN/20120713/409035/?ST=security

マカフィー、Intel CPU連携でルートキットを検出するセキュリティソフト
http://itpro.nikkeibp.co.jp/article/NEWS/20120725/411644/?ST=security

IPA、情報セキュリティ対策の学習や診断などができる中小企業向け支援サイトを公開
http://itpro.nikkeibp.co.jp/article/NEWS/20120725/411542/?ST=security

チェックしておきたい脆弱性情報＜2012.07.25＞
http://itpro.nikkeibp.co.jp/article/COLUMN/20120724/411087/?ST=security

JVNVU#108471 Symantec Web Gateway に複数の脆弱性
http://jvn.jp/cert/JVNVU108471/index.html

JVNDB-2012-002579 Puppet および Puppet Enterprise における任意のファイルを読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002579.html

JVNDB-2012-003295 (JVNVU#108471) Symantec Web Gateway の管理コンソールにおける任意のパスワードを変更される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003295.html

JVNDB-2012-003294 (JVNVU#108471) Symantec Web Gateway の管理コンソールにおける任意のシェルコマンドを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003294.html

JVNDB-2012-003293 (JVNVU#108471) Symantec Web Gateway の管理コンソールにおける SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003293.html

JVNDB-2012-003292 (JVNVU#108471) Symantec Web Gateway の管理コンソールにおける権限を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003292.html

JVNDB-2012-003291 (JVNVU#108471) Symantec Web Gateway の管理コンソールにおける任意のコマンドを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003291.html

JVNDB-2012-003290 (JVNVU#108471) Symantec Web Gateway の管理コンソールにおける SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003290.html

JVNDB-2012-003289 Symantec System Recovery および Backup Exec System Recovery における権限を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003289.html

JVNDB-2012-003288 Moodle におけるサービス運用妨害 (CPU 資源の消費) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003288.html

JVNDB-2012-003287 Moodle の lib/modinfolib.php におけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003287.html

JVNDB-2012-003286 Moodle の cohort/edit_form.php におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003286.html

JVNDB-2012-003285 Moodle の mod/feedback/complete.php における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003285.html

JVNDB-2012-003284 Moodle の auth/ldap/ntlmsso_attempt.php における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003284.html

JVNDB-2012-003283 Moodle の repository/lib.php におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003283.html

JVNDB-2012-003282 Moodle の mod/forum/unsubscribeall.php における forum-subscription の制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003282.html

JVNDB-2012-002612 複数の Mozilla 製品の nsFrameList::FirstChild 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002612.html

JVNDB-2012-002611 Mozilla Firefox ESR および Thunderbird ESR におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002611.html

JVNDB-2012-002609 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002609.html

JVNDB-2012-002699 (JVNVU#962587) Quagga にサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002699.html

JVNDB-2012-002753 (JVNVU#162931) Oracle Java SE の Java Runtime Environment (JRE) における JAXP の処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002753.html

JVNDB-2012-002749 Solaris 上で稼働する Oracle Java SE の JRE における Networking の処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002749.html

JVNDB-2012-002747 (JVNVU#162931) Oracle Java SE の Java Runtime Environment (JRE) における Security の処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002747.html

JVNDB-2012-002746 Oracle Java SE の Java Runtime Environment における Solaris または Linux の印刷処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002746.html

JVNDB-2012-002744 (JVNVU#162931) Oracle Java SE の Java Runtime Environment (JRE) における 2D の処理に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002744.html

JVNDB-2012-002592 (JVNVU#381699) ISC BIND にサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002592.html

JVNDB-2012-003281 Moodle の mod/forum/rsslib.php におけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003281.html

JVNDB-2012-003279 Moodle の mod/lti/typessettings.php におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003279.html

JVNDB-2012-003278 Moodle の lib/accesslib.php における機能チェックを回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003278.html

JVNDB-2012-003277 Moodle におけるエイリアスの制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003277.html

[ MDVSA-2012:111 ] libgdata
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-07/msg00140.html

APPLE-SA-2012-07-25-1 Safari 6.0
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-07/msg00139.html

Cross-Site Scripting (XSS) in Redaxo
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-07/msg00141.html

[slackware-security] libpng (SSA:2012-206-01)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-07/msg00138.html

[security bulletin] HPSBUX02789 SSRT100824 rev.3 - HP-UX CIFS Server (Samba), Remote Executi
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-07/msg00142.html

Microsoft Exchange/Sharepoint and others: Oracle Outside In Vulnerability
http://isc.sans.edu/diary.html?storyid=13780

Apple OS X 10.8 (Mountain Lion) released
http://isc.sans.edu/diary.html?storyid=13783

Apple Releases Safari 6
http://isc.sans.edu/diary.html?storyid=13786

BIND TCP Memory Leak Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027297

BIND DNSSEC Validation Cache Failure Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027296

Microsoft SharePoint Server Bugs in Oracle Outside In Libraries Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027295

Microsoft Exchange Server Bugs in Oracle Outside In Libraries Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027294

VU#404051 Dell SonicWALL Scrutinizer SQL injection vulnerability
http://www.kb.cert.org/vuls/id/404051

VU#659791 IBM ISS Proventia Mail Security contains multiple vulnerabilities
http://www.kb.cert.org/vuls/id/659791

Zabbix 2.0.1 Session Extractor 0day
http://cxsecurity.com/issue/WLB-2012070174

phpProfiles 4.5.4 Beta XSS / RFI / SQL Injection
http://cxsecurity.com/issue/WLB-2012070173

WordPress Front End Upload 0.5.4.4 Shell Upload
http://cxsecurity.com/issue/WLB-2012070172

WordPress Backup Plugin Backup Disclosure Vulnerability
http://secunia.com/advisories/50038/

REDAXO class.rex_list Cross-Site Scripting Vulnerability
http://secunia.com/advisories/49904/

Blackboard Learn Question Answer Cross-Site Scripting Vulnerability
http://secunia.com/advisories/49935/

@Mail Server Email "Date" Script Insertion Vulnerability
http://secunia.com/advisories/50012/

@Mail Server DOM Processor Script Insertion Vulnerability
http://secunia.com/advisories/49980/

WordPress Mac Photo Gallery Plugin Multiple Script Insertion Vulnerabilities
http://secunia.com/advisories/49836/

WordPress GD Star Rating Plugin Export Security Bypass Security Issue
http://secunia.com/advisories/49850/

Zabbix "itemid" SQL Injection Vulnerability
http://secunia.com/advisories/49809/

IBM WebSphere MQ Queue Manage Security Bypass Vulnerability
http://secunia.com/advisories/50051/

SquidClamav URL Parsing Denial of Service Vulnerability
http://secunia.com/advisories/49057/

Slackware update for libpng
http://secunia.com/advisories/50009/

Microsoft Exchange Server Oracle Outside In Technology Multiple Vulnerabilities
http://secunia.com/advisories/50019/

Microsoft SharePoint and FAST Search Server Oracle Outside In Technology Multiple Vulnerabilities
http://secunia.com/advisories/50049/

ISC BIND Bad Cache Assertion Failure and TCP Query Denial of Service Vulnerabilities
http://secunia.com/advisories/50020/

ISC DHCP Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/50018/

REMOTE: Symantec Web Gateway 5.0.3.18 pbcontrol.php ROOT RCE Exploit
http://www.exploit-db.com/exploits/20088

ISC BIND 9 DNSSEC Validation CVE-2012-3817 Denial of Service Vulnerability
http://www.securityfocus.com/bid/54658

RETIRED: WinGraphviz 'WinGraphviz.dll' Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/54458

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1962 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54575

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1964 Clickjacking Vulnerability
http://www.securityfocus.com/bid/54581

Mono 'EnableViewStateMac' Cross-Site Scripting Weakness
http://www.securityfocus.com/bid/40351

Mono 'HttpForbiddenHandler.cs' Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/54344

Dell SonicWALL Scrutinizer 'q' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/54625

Oracle Outside In Technology CVE-2012-3109 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54554

Oracle Outside In Technology CVE-2012-3110 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54506

Oracle Outside In Technology CVE-2012-3107 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54504

Oracle Outside In Technology CVE-2012-3108 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54550

Oracle Outside In Technology CVE-2012-3106 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54546

Oracle Outside In Technology CVE-2012-1768 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54536

Oracle Outside In Technology CVE-2012-1773 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54548

Oracle Outside In Technology CVE-2012-1771 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54543

Oracle Outside In Technology CVE-2012-1769 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54500

Oracle Outside In Technology CVE-2012-1767 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54511

Oracle Outside In Technology CVE-2012-1772 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54497

Oracle Outside In Technology CVE-2012-1766 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54531

Oracle Outside In Technology CVE-2012-1770 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54541

Google Chrome Prior to 17.0.963.83 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/52674

Google Chrome Prior to 17.0.963.65 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/52271

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1961 Clickjacking Vulnerability
http://www.securityfocus.com/bid/54584

Mozilla Firefox CVE-2012-1950 Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/54585

IBM Lotus Protector for Mail Security Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54486

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1957 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54583

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1955 Location Bar Spoofing Vulnerability
http://www.securityfocus.com/bid/54586

Google Chrome Prior to 20.0.1132.43 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54203

Mozilla Firefox, SeaMonkey, and Thunderbird Information Disclosure Vulnerability
http://www.securityfocus.com/bid/54582

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1959 Security Bypass Vulnerability
http://www.securityfocus.com/bid/54576

Mozilla Firefox, SeaMonkey, and Thunderbird Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/54578

Mozilla Firefox CVE-2012-1965 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54579

Mozilla Firefox/Thunderbird/Seamonkey MFSA 2012-42 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/54580

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1967 Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/54573

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1960 Out of Bounds Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54572

Mozilla Firefox CVE-2012-1966 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54577

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1958 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54574

perl-DBD-Pg Module Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/52378

Symantec Web Gateway CVE-2012-2953 Remote Shell Command Execution Vulnerability
http://www.securityfocus.com/bid/54426

Morovia Barcode ActiveX Control Arbitrary File Overwrite Vulnerability
http://www.securityfocus.com/bid/23934

Google Chrome Prior to 19 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/53540

Google Chrome Prior to 18.0.1025.151 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/52913

Google Chrome Prior to 18.0.1025.168 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/53309

Google Chrome Prior to 18.0.1025.142 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/52762

Google Chrome Prior to 15.0.874.102 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/50360

Google Chrome Prior to 17.0.963.46 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51911

Google Chrome Prior to 16.0.912.77 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51641

libgdata SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/52504

libpng 'png_set_text_2()' Function Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52830

GNU Automake Local Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/54418

libpng 'png_inflate()' Function Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/52453

Oracle Java SE CVE-2012-1723 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/53960

Oracle Java SE CVE-2012-1713 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53946

Drupal Location Module Access Bypass Vulnerability
http://www.securityfocus.com/bid/54676

Drupal Secure Login Module Open Redirection Vulnerability
http://www.securityfocus.com/bid/54675

Drupal Gallery Formatter Module Unspecified HTML Injection Vulnerability
http://www.securityfocus.com/bid/54674

Drupal Subuser Module Cross Site Request Forgery and Access Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/54673

WordPress Backup Plugin Database Backup Information Disclosure Vulnerability
http://www.securityfocus.com/bid/54671

REDAXO 'subpage' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54670

Apple Safari Prior to 6.0 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54669

WordPress Mac Photo Gallery Plugin Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/54668

Atmail Email Server HTML Injection Vulnerability
http://www.securityfocus.com/bid/54667

WordPress GD Star Rating Plugin 'export.php' Security Bypass Vulnerability
http://www.securityfocus.com/bid/54666

ISC DHCP Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/54665

SquidClamav URL Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/54663

Multiple Sybase Products Unspecified Security Vulnerability
http://www.securityfocus.com/bid/54662

:: IT Security Neophyte Investigator's MEMO ::

2012年7月26日木曜日

26日木曜日、先勝

0 件のコメント:

コメントを投稿

2012年7月26日木曜日

26日 木曜日、先勝

0 件のコメント:

コメントを投稿

26日木曜日、先勝