2012年9月11日火曜日

11日 火曜日、先勝


+ PostgreSQL 9.2 released
http://www.postgresql.org/about/news/1415/
http://www.postgresql.org/docs/9.2/static/release-9-2.html

プレス発表
ISA Security Compliance Institute(ISCI)との制御システムセキュリティ強化のための相互協力の合意について
~ サイバー攻撃を防ぐための統一的な対策基準確立と普及を目指す ~
http://www.ipa.go.jp/about/press/20120910.html

「AmazonクラウドはFISC基準に適合可能」、SCSKなど3社による金融機関向け調査結果
http://itpro.nikkeibp.co.jp/article/NEWS/20120910/421781/?ST=security

Amazonクラウドの金融機関向けセキュリティー基準対応状況、NRIなど3社が調査
http://itpro.nikkeibp.co.jp/article/NEWS/20120910/421763/?ST=security

Google、マルウエアチェックサイト「VirusTotal」を買収
http://itpro.nikkeibp.co.jp/article/NEWS/20120910/421626/?ST=security

チェックしておきたい脆弱性情報<2012.09.10>
http://itpro.nikkeibp.co.jp/article/COLUMN/20120907/421241/?ST=security

Microsoft Patch Tuesday Pre-Release
http://isc.sans.edu/diary.html?storyid=14059

Godaddy DDoS Attack
http://isc.sans.edu/diary.html?storyid=14062

FreeRADIUS Client Certificate Stack Overflow Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027509

Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1027508

VU#143395 F5 Networks ASM appliance contains a cross-site scripting vulnerability
http://www.kb.cert.org/vuls/id/143395

XnView TIFF Image Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/50547/

WordPress Mac Photo Gallery Plugin Two Security Bypass Security Issues
http://secunia.com/advisories/50481/

WordPress Mac Photo Gallery Plugin Two Security Bypass Security Issues
http://secunia.com/advisories/49923/

Debian update for beaker
http://secunia.com/advisories/50520/

Debian update for mahara
http://secunia.com/advisories/50521/

Red Hat update for java-1.4.2-ibm
http://secunia.com/advisories/50554/

Pinboarding Pro Script Insertion and Cross-Site Request Forgery Vulnerabilities
http://secunia.com/advisories/50525/

Ektron CMS XML External Entity References and ASPX Upload Vulnerabilities
http://secunia.com/advisories/50394/

fwknop Access Request Handling Buffer Overflow Vulnerability
http://secunia.com/advisories/50522/

vBulletin vBShout Module "from" and "end" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/50565/

Oracle VirtualBox Missing VT-x / AMD-V Extension Interrupt Handling Vulnerability
http://secunia.com/advisories/50519/

Red Hat update for java-1.5.0-ibm
http://secunia.com/advisories/50548/

Honeywell HMIWeb Browser ActiveX Control Buffer Overflow Vulnerability
http://secunia.com/advisories/50572/

Debian update for xen-qemu-dm-4.0
http://secunia.com/advisories/50517/

Debian update for xen
http://secunia.com/advisories/50516/

Debian update for qemu and qemu-kvm
http://secunia.com/advisories/50514/

Mac RealPlayer Multiple Vulnerabilities
http://secunia.com/advisories/50580/

RealPlayer Multiple Vulnerabilities
http://secunia.com/advisories/50566/

SUSE update for xen
http://secunia.com/advisories/50576/

REMOTE: WAN Emulator v2.3 Command Execution
http://www.exploit-db.com/exploits/21190

REMOTE: Openfiler v2.x NetworkCard Command Execution
http://www.exploit-db.com/exploits/21191

DoS/PoC: Oracle VM VirtualBox 4.1 Local Denial of Service Vulnerability
http://www.exploit-db.com/exploits/21224

FreeRADIUS Stack Overflow in TLS-based EAP Methods
http://cxsecurity.com/issue/WLB-2012090096

WAN Emulator 2.3 Command Execution
http://cxsecurity.com/issue/WLB-2012090095

Openfiler 2.x NetworkCard Command Execution
http://cxsecurity.com/issue/WLB-2012090094

VICIDIAL call center suite Blind SQL Injection Vulnerability
http://cxsecurity.com/issue/WLB-2012090093

channelcanada Cms SQL Injection Vulnerability
http://cxsecurity.com/issue/WLB-2012090092

aciertaweb Cms SQL Injection Vulnerability
http://cxsecurity.com/issue/WLB-2012090091

mh1webdesign Cms SQL Injection Vulnerability
http://cxsecurity.com/issue/WLB-2012090090

NewWard Cms SQL Injection Vulnerability
http://cxsecurity.com/issue/WLB-2012090089

SiteGo Remote File Inclusion Vulnerability
http://cxsecurity.com/issue/WLB-2012090088

OpenEMR 4 Patient Photograph Arbitrary File Upload
http://cxsecurity.com/issue/WLB-2012090087

PHP Address Book 6.2.12 Multiple security vulnerabilities
http://cxsecurity.com/issue/WLB-2012090086

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1962 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54575

Pinterestclones Security Bypass and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/55469

PostgreSQL 'xml_parse()' Function Arbitrary File Access Vulnerability
http://www.securityfocus.com/bid/55074

PostgreSQL 'xslt_process()' Function Arbitrary File Creation or Overwrite Vulnerability
http://www.securityfocus.com/bid/55072

Oracle Java SE CVE-2012-0547 Remote Java Runtime Environment Weakness
http://www.securityfocus.com/bid/55339

Oracle Java Runtime Environment CVE-2012-1682 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55336

GIMP 'fit' File Format Denial of Service Vulnerability
http://www.securityfocus.com/bid/54246

GIMP Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/55101

Django Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54742

Xen 'set_debugreg' CVE-2012-3494 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55400

Xen CVE-2012-3515 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/55413

RETIRED: MobileCartly 'savepage.php' Arbitrary File Create Vulnerability
http://www.securityfocus.com/bid/55399

QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/53725

Xen CVE-2012-4411 Local Security Bypass Vulnerability
http://www.securityfocus.com/bid/55442

Xen 'XENMEM_populate_physmap' CVE-2012-3496 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55412

F5 Networks BIG-IP Application Security Manager (ASM) Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/55486

Ubiquity Slideshow For Ubuntu Arbitrary File Disclosure Vulnerability
http://www.securityfocus.com/bid/55484

FreeRADIUS Multiple Stack Based Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/55483

WordPress Mac Photo Gallery Plugin Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/55480

SiteGo 'MyStyle[StylePath]' Parameter Remote File Include Vulnerability
http://www.securityfocus.com/bid/55479

DeltaScripts PHP Links Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/55478

RocketTheme RokModule Joomla! Component 'module' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/55477

VICIDIAL Call Center Suite Multiple SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/55476

FireWall KNock OPerator 'expand_acc_string_list()' Function Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55475

vBulletin vBShout Module Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/55474

RealPlayer Multiple Memory Corruption and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/55473

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)