2012年9月5日水曜日

5日 水曜日、先勝


+ CESA-2012:1221 Critical CentOS 6 java-1.6.0-openjdk Update
http://lwn.net/Alerts/514809/

+ CESA-2012:1222 Important CentOS 5 java-1.6.0-openjdk Update
http://lwn.net/Alerts/514810/

+ CESA-2012:1223 Important CentOS 6 java-1.7.0-openjdk Update
http://lwn.net/Alerts/514811/

+ Sudo 1.8.6, 1.7.10 released
http://www.sudo.ws/sudo/stable.html#1.8.6
http://www.sudo.ws/sudo/stable.html#1.7.10

Check Point response to "Check Point GO Vulnerabilities report"
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk79500&src=securityAlerts

InterScan Messaging Security Suite 7.0 Solaris 版 Critical Patch (build 82630)公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1828

データ漏洩の実態~フォレンジック調査で見た真実
情報漏洩に使われるマルウエアの95%は、感染ではなく犯罪者によるインストール
http://itpro.nikkeibp.co.jp/article/COLUMN/20120903/419802/?ST=security

Another round of "Spot the Exploit E-Mail"
http://isc.sans.edu/diary.html?storyid=14029

Adobe Photoshop Buffer Overflows Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027477

VU#777007 Ipswitch WhatsUp Gold 15.02 contains SQL injection and XSS vulnerabilities
http://www.kb.cert.org/vuls/id/777007

Red Hat update for java-1.7.0-oracle
http://secunia.com/advisories/50469/

Wireshark DRDA Dissector Denial of Service Vulnerability
http://secunia.com/advisories/48530/

Group-Office "sort" SQL Injection Vulnerability
http://secunia.com/advisories/49162/

Sciretech Multimedia Manager Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/50486/

MoinMoin Virtual Group ACL Evaluation Security Issue
http://secunia.com/advisories/50496/

Atlassian GreenHopper Cross-Site Scripting and Script Insertion Vulnerabilities
http://secunia.com/advisories/50501/

Red Hat update for java-1.7.0-openjdk
http://secunia.com/advisories/50498/

Ubuntu update for keystone
http://secunia.com/advisories/50494/

Ubuntu update for openjdk-6
http://secunia.com/advisories/50492/

Red Hat update for java-1.6.0-openjdk
http://secunia.com/advisories/50500/

Splunk <= 4.3.3 Reading Arbitrary Files Contents
http://cxsecurity.com/issue/WLB-2012090027

QNAP Turbo NAS Multiple Path Injection
http://cxsecurity.com/issue/WLB-2012090026

Raygunfactory Web Sites Multi Vulnerability
http://cxsecurity.com/issue/WLB-2012090025

Cake & Media Web Sites Multi Vulnerability
http://cxsecurity.com/issue/WLB-2012090024

DH Web Sites SQL Vulnerability
http://cxsecurity.com/issue/WLB-2012090023

Cybrac Web Sites SQL Vulnerability
http://cxsecurity.com/issue/WLB-2012090022

Grupa Medialna swietokrzyskie.info <= SQL Injection & XSS
http://cxsecurity.com/issue/WLB-2012090021

Group-Office Calendar 4.0.88 SQL Injection
http://cxsecurity.com/issue/WLB-2012090020

Wiki Web Help 0.3.11 Remote File Inclusion
http://cxsecurity.com/issue/WLB-2012090019

ArticleSetup 1.1 SQL Injection
http://cxsecurity.com/issue/WLB-2012090018

Sitemax Maestro 2.0 SQL Injection and LFI
http://cxsecurity.com/issue/WLB-2012090017

EasyWeb SQL Injection
http://cxsecurity.com/issue/WLB-2012090016

InterPhoto CMS 2.4.0 Shell Upload
http://cxsecurity.com/issue/WLB-2012090015

Sitecom Home Storage Center Directory Traversal
http://cxsecurity.com/issue/WLB-2012090014

Plante Graffix SQL Injection
http://cxsecurity.com/issue/WLB-2012090013

WordPress BuddyPress 'page' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/52837

Coppermine Photo Gallery 'keywords' Field HTML Injection Vulnerability
http://www.securityfocus.com/bid/52818

TYPO3 Core TYPO3-CORE-SA-2012-001 Multiple Remote Security Vulnerabilities
http://www.securityfocus.com/bid/52771

Bugzilla LDAP Injection and Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/55349

Oracle Java Runtime Environment CVE-2012-1682 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55336

Oracle Java SE CVE-2012-0547 Remote Java Runtime Environment Weakness
http://www.securityfocus.com/bid/55339

Ipswitch WhatsUp Gold 'sGroupList' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/54626

Wireshark DRDA Dissector 'dissect_drda()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/55284

Oracle Java Runtime Environment CVE-2012-3136 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55337

Oracle Java Runtime Environment Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55213

SAP NetWeaver Remote Code Execution and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/53424

Ipswitch WhatsUp Gold 'snmpd.conf' HTML Injection Vulnerability
http://www.securityfocus.com/bid/55393

MoinMoin Virtual Group ACL Evaluation Security Bypass Vulnerability
http://www.securityfocus.com/bid/55391

Sciretech Multiple Products Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/55390

QNAP TS-1279U-RP Turbo NAS Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/55389

Wiki Web Help 'configpath' Parameter Remote File Include Vulnerability
http://www.securityfocus.com/bid/55387

Atlassian GreenHopper Unspecified Cross Site Scripting and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/55385

InterPhoto CMS Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/55384

Splunk Data Preview Functionality Remote File Disclosure Vulnerability
http://www.securityfocus.com/bid/55382

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)