1日 月曜日、大安

+ RHSA-2012:1304 Moderate: kernel security and bug fix update
http://rhn.redhat.com/errata/RHSA-2012-1304.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2313
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2390
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3430
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3552

+ About the security content of Apple TV 5.1
http://support.apple.com/kb/HT5504

+ Google Chrome 22.0.1229.79 released
http://googlechromereleases.blogspot.jp/2012/09/stable-channel-update_25.html

+ nginx 1.2.4 stable version released
http://nginx.org/en/download.html

+ APSA12-01: Security Advisory: Upcoming Revocation of Adobe code signing certificate
http://www.adobe.com/support/security/advisories/apsa12-01.html

+ CESA-2012:1304 Moderate CentOS 6 kernel Update
http://lwn.net/Alerts/517643/

+ Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-sip

+ Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-cucm

+ Cisco IOS Software Tunneled Traffic Queue Wedge Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-c10k-tunnels

+ Cisco IOS Software DHCP Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-dhcp

+ Cisco IOS Software Network Address Translation Vulnerabilities
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-nat

+ Cisco Catalyst 4500E Series Switch with Cisco Catalyst Supervisor Engine 7L-E Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ecc

+ Cisco IOS Software Malformed Border Gateway Protocol Attribute Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-bgp

+ Cisco IOS Software Intrusion Prevention System Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ios-ips

+ Cisco IOS Software DHCP Version 6 Server Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-dhcpv6

+ patch 2.7.1 released
http://ftp.gnu.org/gnu/patch/?C=M;O=D

+ Multiple OpenSSL vulnerabilities in Sun SPARC Enterprise M-series XCP Firmware
https://blogs.oracle.com/sunsecurity/entry/multiple_openssl_vulnerabilities_in_sun
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5077
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7270
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0590
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3245
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4180

+ SYM12-015: Security Advisories Relating to Symantec Products - Symantec Enterprise Vault Updates Oracle Outside-In Libraries
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120928_00

+ Linux kernel 3.6 released
http://www.kernel.org/

Deep Security 8.0 Service Pack 1 Patch 1 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1843

Advisory: Shh/Updater-B False positives
http://www.sophos.com/en-us/support/knowledgebase/118311.aspx

Shh/Updater-B: Identifying and fixing affected non-Sophos applications
http://www.sophos.com/en-us/support/knowledgebase/118348.aspx

Shh/Updater-B: How to run the FixIssues.exe on multiple computers using Enterprise Console
http://www.sophos.com/en-us/support/knowledgebase/118351.aspx

[ MDVSA-2012:155 ] xinetd
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00129.html

[ MDVSA-2012:154 ] apache
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00128.html

[IMF 2013] 2nd Call for Papers
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00127.html

NGS00254 Patch Notification: Apple Mac OS X Lion USB Hub Class Hub Descriptor Arbitrary Code Executi
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00126.html

XSS in OSSEC wui 0.3
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00125.html

[SECURITY] [DSA 2552-1] tiff security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00124.html

[SECURITY] [DSA 2554-1] iceape security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00123.html

Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabil
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00115.html

Cisco Security Advisory: Cisco IOS Software Malformed Border Gateway Protocol Attribute Vulnerabilit
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00117.html

Cisco Security Advisory: Cisco Catalyst 4500E Series Switch with Cisco Catalyst Supervisor Engine 7L
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00122.html

Cisco Security Advisory: Cisco IOS Software Tunneled Traffic Queue Wedge Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00119.html

Cisco Security Advisory: Cisco IOS Software DHCP Version 6 Denial of Service Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00120.html

Cisco Security Advisory: Cisco IOS Software DHCP Denial of Service Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00121.html

Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00118.html

Cisco Security Advisory: Cisco IOS Software Intrusion Prevention System Denial of Service Vulnerabil
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00116.html

Cisco Security Advisory: Cisco Unified Communications Manager Session Initiation Protocol Denial of
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00114.html

[SECURITY] [DSA 2550-2] asterisk regression update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00113.html

[Announcement] CHMag - Call for Articles
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00111.html

[waraxe-2012-SA#090] - Insecure SSL Connection in Thomson SpeedTouch ST780
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00110.html

[SE-2012-01] Critical security issue affecting Java SE 5/6/7
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-09/msg00109.html

今月の呼びかけ
http://www.ipa.go.jp/security/txt/2012/10outline.html

プレス発表
クラウドの浸透実態と緊急時対応における課題に関する調査結果を公開
～機能停止を回避するための条件・課題を提起～
http://www.ipa.go.jp/about/press/20120928.html

「情報セキュリティ対策ベンチマーク バージョン4.1」と「診断の基礎データの
統計情報」を公開
http://www.ipa.go.jp/security/benchmark/benchmark_20120928.html

「脆弱性体験学習ツールAppGoatハンズオンセミナー」開催のご案内
http://www.ipa.go.jp/security/vuln/seminar/lab_semi_appgoat_2012_4.html

プレス発表
連絡不能開発者一覧の公表状況［2012年第3四半期］
～製品開発者名と製品情報の公表中件数は98件と減らず～
http://www.ipa.go.jp/about/press/20120927.html

トレンドマイクロ、ソフトバンクテレコムの端末管理クラウドに技術提供
http://itpro.nikkeibp.co.jp/article/NEWS/20121001/426634/?ST=security

富士ゼロックス、文書に閲覧期限を付ける情報漏洩対策ソフトを発表
http://itpro.nikkeibp.co.jp/article/NEWS/20120928/426081/?ST=security

ウイルス対策ソフトをかたる悪質アプリ、個人情報を盗む
シマンテックが警告、配布サイトを「Google Play」に見せかける
http://itpro.nikkeibp.co.jp/article/NEWS/20120927/425942/?ST=security

作者に連絡がつかず脆弱性が放置されているソフト一覧の最新版、JVNが公表
http://itpro.nikkeibp.co.jp/article/NEWS/20120927/425779/?ST=security

paperboy&co.、個人向けレンタルサーバー全プランにWAF機能を標準で搭載
http://itpro.nikkeibp.co.jp/article/NEWS/20120927/425763/?ST=security

チェックしておきたい脆弱性情報＜2012.09.27＞
http://itpro.nikkeibp.co.jp/article/COLUMN/20120924/424653/?ST=security

［日本IBM］IBM流ソーシャルを重点展示、垂直統合型ハード「Flex System」は一般初公開
http://itpro.nikkeibp.co.jp/article/COLUMN/20120919/423643/?ST=security

ネットにつないだシステムは攻撃されるまでに11分
～オポチュニスティック型攻撃に関する分析
http://itpro.nikkeibp.co.jp/article/COLUMN/20120924/424654/?ST=security

JVN#42014489 Trend Micro Control Manager における SQL インジェクションの脆弱性
http://jvn.jp/jp/JVN42014489/

JVNVU#624491 Apple iOS における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNVU624491/

JVNVU#503755 Apple Safari における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNVU503755/

JVNVU#381963 Apple Mac OS X における複数の脆弱性に対するアップデート
http://jvn.jp/cert/JVNVU381963/

JVN#86318665 Android 版 jigbrowser+ における WebView クラスに関する脆弱性
http://jvn.jp/jp/JVN86318665/

JVNTA12-265A Internet Explorer の脆弱性に対するアップデート
http://jvn.jp/cert/JVNTA12-265A/index.html

JVNVU#471364 InterScan Messaging Security Suite に複数の脆弱性
http://jvn.jp/cert/JVNVU471364/index.html

JVNVU#523889 libpng に整数オーバーフローの脆弱性
http://jvn.jp/cert/JVNVU523889/index.html

JVNVU#903934 ハッシュ関数を使用しているウェブアプリケーションにサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/cert/JVNVU903934/index.html

JVNVU#555668 Casper Suite にクロスサイトリクエストフォージェリの脆弱性
http://jvn.jp/cert/JVNVU555668/index.html

JVN#93344001 ATOK for Android における学習情報ファイルのアクセス権限に関する問題
http://jvn.jp/jp/JVN93344001/index.html

JVNTA12-262A Internet Explorer への攻撃に関する Microsoft Security Advisory (2757760) 公開
http://jvn.jp/cert/JVNTA12-262A/index.html

JVNVU#480095 Internet Explorer に任意のコードが実行される脆弱性
http://jvn.jp/cert/JVNVU480095/index.html

JVNDB-2010-002548 OpenSSL における暗号スイートのダウングレードに関する脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002548.html

JVNDB-2010-001229 OpenSSL における複数の関数に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001229.html

JVNDB-2009-001151 OpenSSL の ASN1_STRING_print_ex 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001151.html

JVNDB-2010-002615 OpenSSL における暗号を強制的に利用される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002615.html

JVNDB-2009-001610 OpenSSL における証明書チェーンの有効性を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001610.html

JVNDB-2012-004397 (JVNVU#480095) (JVNTA12-262A) (JVNTA12-265A) Internet Explorer に任意のコードが実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004397.html

JVNDB-2012-004556 (JVNVU#480095) (JVNTA12-262A) (JVNTA12-265A) Microsoft Internet Explorer 8 および 9 における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004556.html

JVNDB-2012-004557 (JVNVU#480095) (JVNTA12-262A) (JVNTA12-265A) Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004557.html

JVNDB-2012-004558 (JVNVU#480095) (JVNTA12-262A) (JVNTA12-265A) Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004558.html

JVNDB-2012-004559 (JVNVU#480095) (JVNTA12-262A) (JVNTA12-265A) Microsoft Internet Explorer 6 から 8 における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004559.html

JVNDB-2012-004612 (JVNVU#555668) Casper Suite にクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004612.html

JVNDB-2012-004653 Apache Qpid におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004653.html

JVNDB-2012-004652ubiquity-slideshow-ubuntu における任意の Web スクリプトまたは HTML を実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004652.html

JVNDB-2012-004651 Optimalog Optima PLC の APIFTP Server におけるサービス運用妨害 (無限ループ) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004651.html

JVNDB-2012-004650 Optimalog Optima PLC の APIFTP Server におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004650.html

JVNDB-2012-004649 Novell GroupWise の WebAccess コンポーネントにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004649.html

JVNDB-2012-004648 Novell GroupWise のエージェントの HTTP インターフェイスにおけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004648.html

JVNDB-2012-004647 Windows 上で稼働する Novell GroupWise のクライアントにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004647.html

JVNDB-2012-004646 Novell GroupWise の GroupWise Internet Agent における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004646.html

JVNDB-2012-004645 Cisco IOS および IOS XE の DHCPv6 サーバにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004645.html

JVNDB-2012-004644 Cisco Catalyst 4500E シリーズスイッチの Cisco IOS XE におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004644.html

JVNDB-2012-004643 Cisco IOS のデバイスセンサ機能おけるサービス運用妨害 (デバイスリロード) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004643.html

JVNDB-2012-004642 Cisco 10000 シリーズルータ上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004642.html

JVNDB-2012-004641 Cisco IOS の NAT の実装おけるサービス運用妨害 (デバイスリロード) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004641.html

JVNDB-2012-004640 Cisco IOS の NAT の実装におけるサービス運用妨害 (デバイスリロード) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004640.html

JVNDB-2012-004639 複数の Cisco IOS 製品の BGP の実装におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004639.html

JVNDB-2012-004638 Cisco IOS の Intrusion Prevention System 機能におけるサービス運用妨害 (デバイスリロード) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004638.html

JVNDB-2012-004637 複数の Cisco 製品の SIP の実装におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004637.html

JVNDB-2012-000091 (JVN#86318665) Android 版 jigbrowser+ における WebView クラスに関する脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000091.html

JVNDB-2012-004636 Google Chrome で使用される Microsoft Windows 7 のカーネルにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004636.html

JVNDB-2012-004635 Mac OS X 上で稼働する Google Chrome の WebGL の実装における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004635.html

JVNDB-2012-004634 Google Chrome の PDF 機能におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004634.html

JVNDB-2012-004633 Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004633.html

JVNDB-2012-004632 Google Chrome で使用される libxslt におけるメモリ二重解放の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004632.html

JVNDB-2012-004631 Google Chrome におけるポップアップブロッカーを回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004631.html

JVNDB-2012-004630 Google Chrome の IPC の実装における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004630.html

JVNDB-2012-004629 Google Chrome の PDF 機能におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004629.html

JVNDB-2012-004628 Google Chrome におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004628.html

JVNDB-2012-004627 Google Chrome におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004627.html

JVNDB-2012-004626 Google Chrome におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004626.html

JVNDB-2012-004625 Google Chrome におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004625.html

JVNDB-2012-004624 Google Chrome におけるメモリ二重解放の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004624.html

JVNDB-2012-004623 Google Chrome で使用される Skia におけるサービス運用妨害 (out-of-bounds read) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004623.html

JVNDB-2012-004622 Google Chrome で使用される Skia におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004622.html

JVNDB-2012-004621 Google Chrome で使用される FFmpeg におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004621.html

JVNDB-2012-004620 Google Chrome におけるサービス運用妨害 (DOM ツリーの破損) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004620.html

JVNDB-2012-004619 Google Chrome におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004619.html

JVNDB-2012-004618 Google Chrome におけるサービス運用妨害 (DOM トポロジの破損) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004618.html

JVNDB-2012-004617 Google Chrome におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004617.html

JVNDB-2012-004616 Google Chrome の拡張機能システムにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004616.html

JVNDB-2012-004615 Google Chrome の SSE2 最適化機能におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004615.html

JVNDB-2012-004614 Google Chrome の PDF 機能における脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004614.html

JVNDB-2012-004613 Google Chrome で使用される Skia におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004613.html

JVNDB-2012-004478 (JVNVU#459446) PayPal Website Payments Standard を使用している osCommerce Online Merchant に検証不備の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004478.html

JVNDB-2012-004603 Frams' Fast File EXchange の fup におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004603.html

JVNDB-2012-004599 phpMyAdmin における任意の PHP コードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004599.html

JVNDB-2012-004597 IBM Informix Dynamic Server におけるスタックベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004597.html

JVNDB-2012-004595 z/OS 上で稼働する IBM WebSphere Application Server におけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004595.html

JVNDB-2012-004594 IBM WebSphere Application Server における脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004594.html

JVNDB-2012-004593 IBM WebSphere Application Server におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004593.html

JVNDB-2012-004592 IBM WebSphere Application Server の管理コンソールにおけるセッションをハイジャックされる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004592.html

JVNDB-2012-004591 IBM WebSphere Commerce におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004591.html

JVNDB-2012-004590 IBM WebSphere Commerce における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004590.html

JVNDB-2012-004589 Solaris 上で稼働する IBM WebSphere MQ におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004589.html

JVNDB-2012-004588 複数の IBM 製品用 IBM リモート管理アダプター II ファームウェアにおける暗号保護メカニズムを破られる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004588.html

JVNDB-2012-000090 (JVN#42014489) Trend Micro Control Manager における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000090.html

JVNDB-2012-004587 SQLiteManager におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004587.html

JVNDB-2012-004586 UBB.threads の forums/ubbthreads.php におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004586.html

JVNDB-2012-004584 VertrigoServ の inc/extensions.php におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004584.html

JVNDB-2012-004583 Joomla! 用 JExtensions JE Poll コンポーネントにおける SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004583.html

JVNDB-2012-004582 HServer におけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004582.html

JVNDB-2012-004581 PHPB2B の list.php におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004581.html

JVNDB-2012-004580 Php-X-Links における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004580.html

JVNDB-2012-004579 HP SiteScope の SOAP 機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004579.html

JVNDB-2012-004578 HP SiteScope の SOAP 機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004578.html

JVNDB-2012-004577 HP SiteScope の SOAP 機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004577.html

JVNDB-2012-004576 HP SiteScope の SOAP 機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004576.html

JVNDB-2012-004575 HP SiteScope の SOAP 機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004575.html

JVNDB-2012-004574 HP SiteScope の SOAP 機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004574.html

JVNDB-2012-004573 SIMATIC S7-1200 PLC における S7-1200 Web サーバになりすまされる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004573.html

JVNDB-2012-004572 Fultek WinTr Scada の Web サーバにおけるディレクトリトラバーサルの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004572.html

JVNDB-2012-004571 Windows 上で稼働する EMC RSA Authentication Agent および Client におけるトークン認証のステップを回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004571.html

JVNDB-2012-004570 Adobe Flash Player の Matrix3D クラスにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004570.html

JVNDB-2012-004568 DedeCMS における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004568.html

JVNDB-2012-004567 Neturf eCommerce Shopping Cart の search.php における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004567.html

JVNDB-2012-004566 Public Knowledge Project Open Harvester Systems におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004566.html

JVNDB-2012-004565 Public Knowledge Project Open Journal Systems におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004565.html

JVNDB-2012-004564 Public Knowledge Project Open Conference Systems におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004564.html

JVNDB-2012-000089 (JVN#93344001) ATOK for Android における学習情報ファイルのアクセス権限に関する問題
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000089.html

JVNDB-2012-004560 Oracle Database における総当りパスワード推測攻撃を実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004560.html

Adobe certification revocation for October 4th
http://isc.sans.edu/diary.html?storyid=14194

ISC Feature of the Week: Glossary
http://isc.sans.edu/diary.html?storyid=14188

Some Android phones can be reset to factory default by clicking on links
http://isc.sans.edu/diary.html?storyid=14173

More Java Woes
http://isc.sans.edu/diary.html?storyid=14179

VU#950795 Trend Micro Control Manager adhoc query vulnerability
http://www.kb.cert.org/vuls/id/950795

Google Android Dialer TEL URL Handling Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027587

IBM AIX fuser Command Bug Lets Local Users Deny Service
http://www.securitytracker.com/id/1027586

IBM Rational ClearQuest Lets Remote Users Spoof SSL Servers
http://www.securitytracker.com/id/1027585

Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query Module Lets Remote Users Inject SQL Commands
http://www.securitytracker.com/id/1027584

Adobe AIR Applications and Adobe Software for Windows Have Compromised Certificates
http://www.securitytracker.com/id/1027583

Foxit Reader DLL Loading Error Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027581

Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027580

Cisco IOS NAT Bugs Let Remote Users Deny Service
http://www.securitytracker.com/id/1027579

Cisco IOS on Cisco 10000 Series Tunneled Traffic Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027578

Cisco IOS DHCPv6 Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027577

Cisco IOS BGP Attribute Processing Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027576

Cisco IOS SIP Processing Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027575

Cisco Unified Communications Manager SIP Processing Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027574

Cisco Catalyst Switch Unspecified Packet Processing Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027573

Cisco IOS DHCP Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027572

Samsung Galaxy Phones Android Dialer Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027571

WordPress 'dashboard-widget-control-form' Bug Permits Cross-Site Request Forgery Attacks
http://www.securitytracker.com/id/1027567

Linux Kernel Bug in rds_recvmsg() Lets Local Users Obtain Portions of Kernel Memory
http://www.securitytracker.com/id/1027562

Linux Kernel ip_options Race Condition Lets Remote and Local Users Deny Service
http://www.securitytracker.com/id/1027561

SafeNet Sentinel Keys Server Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027560

WordPress Multisite Plugin Manager Plugin Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/50762/

Gentoo update for gimp
http://secunia.com/advisories/50737/

Gentoo update for postgresql-server
http://secunia.com/advisories/50700/

openCryptoki Insecure Temporary File Security Issue
http://secunia.com/advisories/50702/

OpenStack Keystone Token Verification Bypass Vulnerabilities
http://secunia.com/advisories/50665/

Gentoo update for fastjar
http://secunia.com/advisories/50786/

IBM Rational Synergy Multiple Vulnerabilities
http://secunia.com/advisories/50806/

Gentoo update for libgssglue
http://secunia.com/advisories/50785/

Gentoo update for mod_rpaf
http://secunia.com/advisories/50788/

Ubuntu update for libxml2
http://secunia.com/advisories/50800/

Gentoo update for nut
http://secunia.com/advisories/50788/

Ubuntu update for emacs23
http://secunia.com/advisories/50801/

Smartfren Connex EC1261 Insecure Directory Permissions Security Issue
http://secunia.com/advisories/50766/

HP-UX update for OpenSSL
http://secunia.com/advisories/50768/

Piwigo "username_or_email" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/50510/

Gentoo update for pidgin
http://secunia.com/advisories/50781/

Gentoo update for postfixadmin
http://secunia.com/advisories/50731/

Avaya Communication Manager Oracle Java Multiple Vulnerabilities
http://secunia.com/advisories/50782/

IBM Rational RequisitePro GSKit Two Vulnerabilities
http://secunia.com/advisories/50783/

IBM Rational Products IEHS Redirection Weakness and Cross-Site Scripting Vulnerability
http://secunia.com/advisories/50784/

Samsung Galaxy S III USSD Code Factory Reset Vulnerability
http://secunia.com/advisories/50780/

SUSE update for postgresql and postgresql-libs
http://secunia.com/advisories/50718/

IBM Rational ClearQuest GSKit Spoofing Security Issue
http://secunia.com/advisories/50764/

Thomson TWG850 Cable Modem Authentication Security Bypass
http://secunia.com/advisories/50647/

SUSE update for dhcp
http://secunia.com/advisories/50754/

Gentoo update for asterisk
http://secunia.com/advisories/50756/

Trend Micro Control Manager Ad Hoc Query "id" SQL Injection Vulnerability
http://secunia.com/advisories/50760/

Trend Micro Control Manager Ad Hoc Query "id" SQL Injection Vulnerability
http://secunia.com/advisories/50748/

Gentoo update for sqlalchemy
http://secunia.com/advisories/50757/

Debian update for tiff
http://secunia.com/advisories/50761/

Debian update for iceape
http://secunia.com/advisories/50763/

Ubuntu update for transmission
http://secunia.com/advisories/50769/

Ubuntu update for freeradius
http://secunia.com/advisories/50770/

Cisco IOS Device Sensor DHCP Packet Handling Denial of Service Vulnerability
http://secunia.com/advisories/50773/

Cisco IOS / IOS XE DHCPv6 Packet Handling Denial of Service Vulnerability
http://secunia.com/advisories/50772/

Cisco IOS / IOS XE SIP Denial of Service Vulnerability
http://secunia.com/advisories/50774/

Cisco IOS Cisco 10000 Series Routers Tunneled Packets Handling Denial of Service Vulnerability
http://secunia.com/advisories/50771/

Cisco IOS SIP and IP NAT Processing Denial of Service Vulnerabilities
http://secunia.com/advisories/50779/

Cisco IOS Border Gateway Protocol Attribute Handling Denial of Service Vulnerability
http://secunia.com/advisories/50778/

Cisco IOS Intrusion Prevention System DNS Packet Handling Denial of Service Vulnerability
http://secunia.com/advisories/50777/

Cisco Unified Communications Manager SIP Denial of Service Vulnerability
http://secunia.com/advisories/50775/

Cisco Catalyst 4500E Series Switch Denial of Service Vulnerability
http://secunia.com/advisories/50776/

Drupal Organic groups Module Two Security Bypass Security Issues
http://secunia.com/advisories/50720/

WordPress Archin Theme Cross-Site Scripting and Arbitrary File Upload Vulnerabilities
http://secunia.com/advisories/50711/

389 Directory Server "modifyRDN" ACL Bypass Vulnerability
http://secunia.com/advisories/50713/

Gentoo update for libjpeg-turbo
http://secunia.com/advisories/50753/

WordPress ABC Test Plugin "id" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/50608/

ViArt Shop Multiple Script Insertion Vulnerabilities
http://secunia.com/advisories/50716/

ViArt Shop payments/sips_response.php Arbitrary Command Execution Vulnerability
http://secunia.com/advisories/50701/

Ubuntu update for ruby
http://secunia.com/advisories/50730/

IBM Sterling Secure Proxy Jetty Web Form Hash Collision Denial of Service Vulnerability
http://secunia.com/advisories/50738/

Ubuntu update for rubygems
http://secunia.com/advisories/50721/

Gentoo update for opera
http://secunia.com/advisories/50740/

Foxit Reader Insecure Library Loading Vulnerability
http://secunia.com/advisories/50526/

Oracle SPARC Enterprise M Series OpenSSL Multiple Vulnerabilities
http://secunia.com/advisories/50733/

Cerberus FTP Server Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/50741/

Red Hat update for kernel
http://secunia.com/advisories/50765/

Gentoo update for libtasn1
http://secunia.com/advisories/50739/

Google Chrome Multiple Vulnerabilities
http://secunia.com/advisories/50759/

IBM WebSphere Commerce Enterprise Two Vulnerabilities
http://secunia.com/advisories/50767/

JAMF Casper Suite Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/50714/

phpMyAdmin Compromised Source Package Backdoor Security Issue
http://secunia.com/advisories/50703/

Gentoo update for calligra
http://secunia.com/advisories/50705/

Gentoo update for atheme
http://secunia.com/advisories/50704/

IBM WebSphere MQ Server Message Channel Agent Denial of Service Vulnerability
http://secunia.com/advisories/50752/

IBM WebSphere Application Server for z/OS CBIND Check Bypass Vulnerability
http://secunia.com/advisories/50751/

RSA Authentication Agent / Authentication Client Access Bypass Weakness
http://secunia.com/advisories/50735/

IBM Informix Dynamic Server Buffer Overflow Vulnerability
http://secunia.com/advisories/50649/

Oracle Solaris Apache Tomcat Multiple Vulnerabilities
http://secunia.com/advisories/50745/

WordPress Sexy Add Template Plugin Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/50709/

Debian update for iceweasel
http://secunia.com/advisories/50623/

Oracle Solaris Expat XML Parser Denial of Service Vulnerability
http://secunia.com/advisories/50750/

Oracle Solaris ICU "_canonicalize()" Buffer Overflow Vulnerability
http://secunia.com/advisories/50749/

Oracle Solaris Mozilla Firefox Multiple Vulnerabilities
http://secunia.com/advisories/50747/

Oracle Solaris Pidgin Multiple Vulnerabilities
http://secunia.com/advisories/50746/

Oracle Solaris GIMP Script-Fu Server Buffer Overflow Vulnerability
http://secunia.com/advisories/50744/

Oracle Solaris libsoup SoupServer Directory Traversal Vulnerability
http://secunia.com/advisories/50743/

Oracle Solaris Wireshark Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/50742/

Wordpress Token Manager Plugin "tid" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/50722/

Red Hat update for JBoss Enterprise Products
http://secunia.com/advisories/50736/

Ubuntu update for ghostscript
http://secunia.com/advisories/50719/

Gentoo update for squidclamav
http://secunia.com/advisories/50706/

Gentoo update for icu
http://secunia.com/advisories/50707/

Apple TV Multiple Vulnerabilities
http://secunia.com/advisories/50728/

SUSE update for java-1_7_0-ibm
http://secunia.com/advisories/50723/

REMOTE: QNX QCONN Remote Command Execution Vulnerability
http://www.exploit-db.com/exploits/21520

LOCAL: Smartfren Connex EC 1261-2 UI OUC Local Privilege Escalation Vulnerability
http://www.exploit-db.com/exploits/21547

DoS/PoC: Cisco DPC2100 Denial of Service
http://www.exploit-db.com/exploits/21523

Multiple Browsers Cross-Site Scripting via redirectors 301 and 303
http://cxsecurity.com/issue/WLB-2012100010

XP Book v3.0 BLind SQL Injection & XSS Vulnerability
http://cxsecurity.com/issue/WLB-2012100009

AlamFifa CMS 1.0 Beta SQL Injection
http://cxsecurity.com/issue/WLB-2012100008

Dream Ecommerce SQL Injection
http://cxsecurity.com/issue/WLB-2012100007

FvS Groupmp3 CMS SQL Injection
http://cxsecurity.com/issue/WLB-2012100006

LG NAS Users and password hash disclosure
http://cxsecurity.com/issue/WLB-2012100005

Reaver Pro Livedisc Code Execution
http://cxsecurity.com/issue/WLB-2012100004

Deadcow Design Local File Inclusion
http://cxsecurity.com/issue/WLB-2012100003

APlite Technologies Local File Inclusion
http://cxsecurity.com/issue/WLB-2012100002

MediaRocket Local File Inclusion
http://cxsecurity.com/issue/WLB-2012100001

CMS Balitbang Depdiknas v3.4 HTML Injection
http://cxsecurity.com/issue/WLB-2012090253

joomla FreiChat upload shell
http://cxsecurity.com/issue/WLB-2012090252

Foxit Reader 5.4.3.0920 Division By Zero local DoS
http://cxsecurity.com/issue/WLB-2012090251

Wordpress phpBAK Red Config Vulnerability
http://cxsecurity.com/issue/WLB-2012090250

Apple Mac OS X Lion Arbitrary Code Execution
http://cxsecurity.com/issue/WLB-2012090249

Samba SetInformationPolicy AuditEventsInfo Heap Overflow
http://cxsecurity.com/issue/WLB-2012090248

Prime RADIO SQLi Vulnerability
http://cxsecurity.com/issue/WLB-2012090247

easyweb SQLi Vulnerability
http://cxsecurity.com/issue/WLB-2012090246

JAMF Casper Suite MDM Cross Site Request Forgery
http://cxsecurity.com/issue/WLB-2012090245

Trend Micro Control Manager 5.5 / 6.0 Blind SQL Injection
http://cxsecurity.com/issue/WLB-2012090244

OSSEC WUI 0.3 Cross Site Scripting
http://cxsecurity.com/issue/WLB-2012090243

Smartfren Connex EC 1261-2 UI OUC Local Privilege Escalation Vulnerability
http://cxsecurity.com/issue/WLB-2012090242

Midori Browser 0.3.2 Denial Of Service
http://cxsecurity.com/issue/WLB-2012090241

Cisco DPC2100 Denial Of Service
http://cxsecurity.com/issue/WLB-2012090240

Android Mobile 2.6.xx Full Screen Crash Poc
http://cxsecurity.com/issue/WLB-2012090239

Android Mobile 2.x.xx TextSwitcher Null Pointer
http://cxsecurity.com/issue/WLB-2012090238

Android Mobile 4.xx Screen Orientation Crash
http://cxsecurity.com/issue/WLB-2012090237

Samsung Galaxy SII Mdnie_Tune_Files_Root Remote File Disclosure
http://cxsecurity.com/issue/WLB-2012090236

Janito SQL injection Vulnerability
http://cxsecurity.com/issue/WLB-2012090235

Joomla Component com_joomla_flash_uploader Remote File Upload
http://cxsecurity.com/issue/WLB-2012090234

WordPress ABC-Test 0.1 Cross Site Scripting
http://cxsecurity.com/issue/WLB-2012090233

Drupal Organic Groups 7.x Access Bypass
http://cxsecurity.com/issue/WLB-2012090232

phpMyAdmin 3.5.2.2 server_sync.php backdoor
http://cxsecurity.com/issue/WLB-2012090231

YingZhi Python 1.9 Arbitrary Traversal & Write
http://cxsecurity.com/issue/WLB-2012090230

ViArt Shop Evaluation 4.1 Remote File Inclusion
http://cxsecurity.com/issue/WLB-2012090229

QNX QCONN Remote Command Execution Vurnerability
http://cxsecurity.com/issue/WLB-2012090228

Samba 3.6.3 remote root exploit
http://cxsecurity.com/issue/WLB-2012090227

 MaxForum v2.0.0 Local File Inclusion Vulnerability
http://cxsecurity.com/issue/WLB-2012090226

ViArt Shop Enterprise 4.1 Arbitrary Command Execution Vulnerability
http://cxsecurity.com/issue/WLB-2012090225

ViArt Shop Enterprise 4.1 (post-auth) Multiple Stored XSS Vulnerabilities
http://cxsecurity.com/issue/WLB-2012090224

Java SE 5/6/7 critical security issue
http://cxsecurity.com/issue/WLB-2012090223

RSA Authentication Agent 7.1 / Client 3.5 Access Control
http://cxsecurity.com/issue/WLB-2012090222

Guacamole 0.6.0 Buffer Overflow
http://cxsecurity.com/issue/WLB-2012090221

Atlassian Confluence 3.0 Cross Site Request Forgery
http://cxsecurity.com/issue/WLB-2012090220

Cisco IOS Multiple Protocol Packet Processing Remote Denial of Service
http://www.vupen.com/english/ADV-2012-0381.php

Google Chrome Multiple Use-after-free and Memory Corruption Vulnerabilities
http://www.vupen.com/english/ADV-2012-0380.php

phpMyAdmin SourceForge Mirror Source Code Backdoor Code Execution
http://www.vupen.com/english/ADV-2012-0379.php

D-Bus Environment Variable Processing Local Privilege Escalation
http://www.vupen.com/english/ADV-2012-0378.php

Novell GroupWise Multiple Memory Corruption and DoS Vulnerabilities
http://www.vupen.com/english/ADV-2012-0377.php

ISC DHCP Memory Leak and Timeout Denial of Service Vulnerabilities
http://www.vupen.com/english/ADV-2012-0376.php

ISC BIND Resource Record Processing Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0375.php

Apple TV Media Data Processing Multiple Code Execution Vulnerabilities
http://www.vupen.com/english/ADV-2012-0374.php

Apple Safari for Mac OS X Lion Code Execution and Information Disclosure
http://www.vupen.com/english/ADV-2012-0373.php

Apple Mac OS X Multiple Code Execution and Information Disclosure
http://www.vupen.com/english/ADV-2012-0372.php

Apple iOS for iPhone/iPad/iPod Code Execution and Information Disclosure
http://www.vupen.com/english/ADV-2012-0371.php

Apple Remote Desktop "Encrypt all network data" Information Disclosure
http://www.vupen.com/english/ADV-2012-0370.php

Apple iTunes Multiple Remote Code Execution and Information Disclosure
http://www.vupen.com/english/ADV-2012-0369.php

Adobe ColdFusion Data Processing Remote Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0368.php

Microsoft Internet Explorer Multiple Remote Code Execution Vulnerabilities
http://www.vupen.com/english/ADV-2012-0367.php

Microsoft Products Privilege Escalation and Cross Site Scripting
http://www.vupen.com/english/ADV-2012-0366.php

FreeRADIUS EAP-TLS Client Certificate Buffer Overflow Vulnerability
http://www.vupen.com/english/ADV-2012-0365.php

RealPlayer Media Files Processing Multiple Code Execution Vulnerabilities
http://www.vupen.com/english/ADV-2012-0364.php

Citrix XenServer Multiple Local Privilege Escalation and Denial of Service
http://www.vupen.com/english/ADV-2012-0363.php

Xen Multiple Local Privilege Escalation and Denial of Service Vulnerabilities
http://www.vupen.com/english/ADV-2012-0362.php

Mozilla Firefox/SeaMonkey/Thunderbird Information Disclosure Vulnerability
http://www.securityfocus.com/bid/55311

Oracle Outside In Technology CVE-2012-3110 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54506

Oracle Outside In Technology CVE-2012-3109 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54554

Oracle Outside In Technology CVE-2012-3108 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54550

Oracle Outside In Technology CVE-2012-3106 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54546

Oracle Outside In Technology CVE-2012-1770 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54541

Oracle Outside In Technology CVE-2012-1766 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54531

Oracle Outside In Technology CVE-2012-3107 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54504

Oracle Outside In Technology CVE-2012-1771 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54543

Oracle Outside In Technology CVE-2012-1773 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54548

Oracle Outside In Technology CVE-2012-1769 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54500

Oracle Outside In Technology CVE-2012-1772 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54497

Oracle Outside In Technology CVE-2012-1768 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54536

Oracle Outside In Technology CVE-2012-1767 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54511

Linux Kernel 'rds_recvmsg()' Function Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/54702

Linux Kernel dl2k Network Driver IOCTL Handling Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/53965

Linux Kernel 'mmap()' Failure Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/53668

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3967 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55277

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3970 Use-After-Free Memory CorruptionVulnerability
http://www.securityfocus.com/bid/55278

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-3972 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55310

Mozilla Firefox/Thunderbird Web Console CVE-2012-3980 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55257

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3957 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55341

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3962 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55342

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3960 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55325

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3978 Security Bypass Vulnerability
http://www.securityfocus.com/bid/55306

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-3969 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55292

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3959 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55324

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1970 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55266

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3958 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55323

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1976 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55319

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1974 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55317

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3961 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55321

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3956 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55320

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1975 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55318

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1973 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55316

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1971 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55264

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3968 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55276

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3966 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55274

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3964 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55322

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3963 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55340

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1972 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55314

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3971 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55304

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1956 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55260

PostgreSQL 'SECURITY DEFINER' and 'SET' Attributes Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/53812

PostgreSQL 'xslt_process()' Function Arbitrary File Creation or Overwrite Vulnerability
http://www.securityfocus.com/bid/55072

openCryptoki Multiple Insecure File Creation Vulnerabilities
http://www.securityfocus.com/bid/55627

Xinetd CVE-2012-0862 Security Bypass Vulnerability
http://www.securityfocus.com/bid/53720

GIMP GIF Image Parsing 'LZWReadByte()' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/49148

Oracle Java SE CVE-2012-0499 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52016

libcrypt 'crypt()' Password Encryption Weakness
http://www.securityfocus.com/bid/53729

PostgreSQL Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/52188

PostgreSQL 'xml_parse()' Function Arbitrary File Access Vulnerability
http://www.securityfocus.com/bid/55074

Apache HTTP Server 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/53046

Apache HTTP Server HTML-Injection And Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/55131

GIMP PSD Image Parsing Integer Overflow Vulnerability
http://www.securityfocus.com/bid/37040

GIMP CVE-2012-3402 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55103

GIMP PCX Image Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/48057

GIMP CVE-2012-2763 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/53741

GIMP Multiple File Plugins Remote Stack Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/45647

GIMP BMP Image Parsing Integer Overflow Vulnerability
http://www.securityfocus.com/bid/37006

libgssglue 'GSSAPI_MECH_CONF' Environment Variable Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/48490

389 Directory Server Access Bypass Vulnerability
http://www.securityfocus.com/bid/55690

FastJar 'extract_jar()' Archive Extraction Directory Traversal Vulnerability
http://www.securityfocus.com/bid/41006

FastJar 'extract_jar()' Absolute Path Archive Extraction Directory Traversal Vulnerability
http://www.securityfocus.com/bid/41009

Oracle Java SE CVE-2012-0505 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52017

Oracle Java SE CVE-2012-0503 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52018

Oracle Java SE CVE-2012-0500 Java Runtime Environment Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/52015

Oracle Java SE CVE-2012-0497 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52009

IBM Eclipse Help System Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/53884

Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability
http://www.securityfocus.com/bid/52161

Oracle Java SE CVE-2012-0506 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52014

Oracle Java SE CVE-2012-0502 Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52011

Oracle Java SE CVE-2012-0501 Remote Stack Overflow Vulnerability
http://www.securityfocus.com/bid/52013

Oracle Java SE CVE-2012-0498 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/52019

Oracle Java SE CVE-2011-3563 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52012

Oracle GlassFish Server Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51194

Jetty Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51199

Samba 'Perl-Based DCE/RPC IDL' Compiler Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/52973

Emerson DeltaV CVE-2012-3035 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55719

IBM Rational Business Developer CVE-2012-3319 Information Disclosure Vulnerability
http://www.securityfocus.com/bid/55718

OpenStack Keystone Token Validation Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/55716

Apache 'mod-rpaf' Module Denial of Service Vulnerability
http://www.securityfocus.com/bid/55154

Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/53743

CoSoSys Endpoint Protector CVE-2012-2994 Predictable Password Generation Vulnerability
http://www.securityfocus.com/bid/55570

libxml2 CVE-2012-2807 Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/54718

GNU Emacs EDE Component Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51354

GNU Emacs 'enable-local-variables' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54969

OpenSSL DTLS CVE-2012-2333 Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/53476

Postfix Admin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/51680

Pidgin 'mxit_show_message()' Function Stack-Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/54322

Apple Mac OS X Security Update 2012-004 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/55623

IBM Rational Directory Server Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54743

Ruby "#to_s" Security Bypass Vulnerability
http://www.securityfocus.com/bid/46458

RubyGems SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/53174

WordPress Multisite Plugin Manager Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/55717

MySQL MyISAM Table Symbolic Link CVE-2012-4452 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/55715

ossec-wui 'searchid' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55714

OPTIMA PLC Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/55712

Piwigo 'username_or_email' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55710

Midori Browser Denial of Service Vulnerability
http://www.securityfocus.com/bid/55709

Samsung Galaxy S III USSD Code Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/55708

Trend Micro Control Manager 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/55706

SQLAlchemy 'limit' and 'offset' Parameters SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/52330

Asterisk CVE-2012-4737 Access Rule Remote Security Bypass Vulnerability
http://www.securityfocus.com/bid/55335

Asterisk Voice Mail Denial Of Service Vulnerability
http://www.securityfocus.com/bid/54317

Asterisk 'externalIVR' Application Shell Command Execution Security Bypass Vulnerability
http://www.securityfocus.com/bid/55351

Asterisk Uncompleted Re-invite Transactions Denial Of Service Vulnerability
http://www.securityfocus.com/bid/54327

RETIRED: Samba Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55655

LibTIFF 't2p_read_tiff_init()' Function Heap-based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/54601

LibTIFF Out-Of-Order Tag Type Mismatch Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/41475

LibTIFF Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/41295

LibTIFF 'tiff2pdf' Utility Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/54076

LibTIFF 'td_stripbytecount' NULL Pointer Dereference Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/41480

LibTIFF Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/47338

LibTIFF Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/41088

Linux Kernel 'i915_gem_execbuffer.c' Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/53971

Zend Framework Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/55636

Google Chrome Prior to 17.0.963.46 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51911

Mozilla Firefox/SeaMonkey CVE-2012-3976 Address Bar Spoofing Vulnerability
http://www.securityfocus.com/bid/55313

FreeRADIUS Multiple Stack Based Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/55483

Transmission Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/54705

Google Chrome Prior to 21.0.1180.89 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/55331

libxslt 'generate-id()' Function Information Disclosure Vulnerability
http://www.securityfocus.com/bid/47668

Google Chrome Prior to 20.0.1132.43 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/54203

Mcrypt Stack Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55425

libdbus 'DBUS_SYSTEM_BUS_ADDRESS' Variable Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/55517

libgio CVE-2012-4425 Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/55555

Google Chrome Prior to 19 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/53540

Google Chrome Prior to 16.0.912.75 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51300

libxml2 Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/52107

libxml2 Unspecified Out-of-Bounds Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51084

libxml2 Invalid XPath Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/48056

Google Chrome Prior to 14.0.835.163 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49658

Google Chrome Prior to 13.0.782.215 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/49279

Apple Safari 'libxml' (CVE-2011-0216) Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48832

Cisco Wireless LAN Controller ICMP Packet Handling Denial of Service Vulnerability
http://www.securityfocus.com/bid/47606

ISC DHCP IPv6 Lease Expiration Handling Denial of Service Vulnerability
http://www.securityfocus.com/bid/55530

libguac Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55497

OpenSSL Multiple Vulnerabilities
http://www.securityfocus.com/bid/34256

OpenSSL 'EVP_VerifyFinal' Function Signature Verification Vulnerability
http://www.securityfocus.com/bid/33150

OpenSSL Ciphersuite Downgrade Security Weakness
http://www.securityfocus.com/bid/45164

OpenSSL Ciphersuite Modification Allows Disabled Cipher Security Bypass Vulnerability
http://www.securityfocus.com/bid/45254

OpenSSL 'bn_wexpend()' Error Handling Unspecified Vulnerability
http://www.securityfocus.com/bid/38562

file Composite Document File Format Denial of Service Vulnerability
http://www.securityfocus.com/bid/52225

libjpeg-turbo Heap-Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/54480

phpMyAdmin 'server_sync.php' Backdoor Vulnerability
http://www.securityfocus.com/bid/55672

Smartfren Connex EC1261 Insecure Directory Permissions Vulnerability
http://www.securityfocus.com/bid/55711

Cisco IOS NAT Functionality CVE-2012-4619 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55705

Drupal Organic Groups SA-CONTRIB-2012-148 Security Bypass Vulnerability
http://www.securityfocus.com/bid/55702

Cisco Catalyst 4500E Series Switch CVE-2012-4622 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55701

Cisco IOS DHCP Version 6 Server CVE-2012-4623 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55700

Cisco IOS DHCP CVE-2012-4621 Denial Of Service Vulnerability
http://www.securityfocus.com/bid/55699

Munin CVE-2012-3512 Insecure File Permissions Vulnerability
http://www.securityfocus.com/bid/55698

Cisco IOS and Unified Communications Manager (CVE-2012-3949) Denial of Service Vulnerability
http://www.securityfocus.com/bid/55697

Cisco IOS Queue Wedge CVE-2012-4620 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55696

Cisco IOS CVE-2012-3950 Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/55695

Cisco IOS Malformed Attribute Denial of Service Vulnerability
http://www.securityfocus.com/bid/55694

Cisco IOS NAT Functionality CVE-2012-4618 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55693

WordPress ABC Test Plugin 'id' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55689

Foxit Reader 'fxdecod1.dll' DLL Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/55686

YingZhiPython Directory Traversal and Arbitrary File Upload Vulnerabilities
http://www.securityfocus.com/bid/55685

IBM WebSphere Commerce Enterprise REST Services Security Bypass Vulnerability
http://www.securityfocus.com/bid/55684

IBM WebSphere Commerce Enterprise Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/55683

ViArt Shop Evaluation Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/55682

Opera Web Browser Cross Site Scripting Sanitizer Security Bypass Vulnerability
http://www.securityfocus.com/bid/54788

Opera Web Browser HTML Injection Vulnerability
http://www.securityfocus.com/bid/54779

Opera Web Browser Prior to 12.01 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/54782

Opera Web Browser CVE-2012-4010 Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/55345

Opera Web Browser Unspecified Security Vulnerability
http://www.securityfocus.com/bid/54780

GNU Libtasn1 ASN1 Length DER Decoding Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52668

Linux Kernel 'inet->opt ip_options' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/55359

Smarty 'SmartyException' Class Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55506

Auxilium PetRatePro Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/55580

Apache Tomcat Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51200

Apache Tomcat Parameter Handling Denial of Service Vulnerability
http://www.securityfocus.com/bid/51447

Apache Tomcat HTTP DIGEST Authentication Multiple Security Weaknesses
http://www.securityfocus.com/bid/49762

Apache Tomcat Request Object Security Bypass Vulnerability
http://www.securityfocus.com/bid/51442

Apache Commons Daemon 'jsvc' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/49143

Apache Tomcat Windows Installer Insecure Password Vulnerability
http://www.securityfocus.com/bid/36954

Multiple Java Runtime Implementations UTF-8 Input Validation Vulnerability
http://www.securityfocus.com/bid/30633

Apache Tomcat CVE-2007-6286 Duplicate Request Processing Security Vulnerability
http://www.securityfocus.com/bid/49470

Apache Tomcat WAR File Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37944

Apache Tomcat JULI Logging Component Default Security Policy Vulnerability
http://www.securityfocus.com/bid/27006

Apache Tomcat Parameter Processing Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/27703

Apache Tomcat Directory Host Appbase Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/37942

Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/27706

HP Application Lifecycle Management 'XGO.ocx' Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/55272

UBB.threads 'Username' Field Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51275

TinyGuestBook 'sign.php' Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/51259

Libpurple MSN Short Packets Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/45581

Php-X-Links Script Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/51223

Joomla JE Poll Component Unspecified Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/51229

WSN Links 'vote.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/31305

PHPB2B 'q' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51221

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0468 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53221

Libpurple Yahoo Protocol 'YMSG' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/46837

WordPress Pretty Link Lite Plugin 'slug' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51306

SQLiteManager Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/51294

Ggb Guestbook Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/51285

VertrigoServ 'extensions.php' Script Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51293

Pidgin SILC (Secure Internet Live Conferencing) Protocol Denial of Service Vulnerability
http://www.securityfocus.com/bid/51074

Pidgin Jingle Extension XMPP Protocol Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/51070

Pidgin Denial of Service and Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/49268

Pidgin OSCAR Protocol UTF-8 Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/51010

HServer Directory Traversal Vulnerability
http://www.securityfocus.com/bid/51286

DedeCMS Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/51211

WordPress WHOIS Plugin 'domain' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51244

Pidgin 'Libpurple' Cipher API Information Disclosure Vulnerability
http://www.securityfocus.com/bid/46307

TinyGuestBook 'Msg' Parameter HTML Injection Vulnerability
http://www.securityfocus.com/bid/51248

Pidgin 'msn_oim_report_to_user()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/52475

Pidgin XMPP Protocol Denial of Service Vulnerability
http://www.securityfocus.com/bid/52476

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0473 Out of Bounds Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53231

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0477 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53229

Mozilla Firefox/SeaMonkey/Thunderbird Site Identity Spoofing Vulnerability
http://www.securityfocus.com/bid/53224

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0467 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53223

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-0478 Denial of Service Vulnerability
http://www.securityfocus.com/bid/53227

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0474 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53228

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-0470 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/53225

OpenType Sanitizer Off By One Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/53222

Mozilla Firefox/Thunderbird/SeaMonkey IDBKeyRange Use-After-Free Vulnerability
http://www.securityfocus.com/bid/53220

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0471 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53219

libsoup SoupServer Directory Traversal Vulnerability
http://www.securityfocus.com/bid/48926

Alligra Calligra Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/54816

Wireshark DIAMETER Dissector Denial of Service Vulnerability
http://www.securityfocus.com/bid/53652

Wireshark Misaligned Memory Denial of Service Vulnerability
http://www.securityfocus.com/bid/53653

Wireshark Versions Prior to 1.8.1 Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/54649

IcedTea-Web Multiple Arbitrary Code Execution Vulnerabilities
http://www.securityfocus.com/bid/54762

Atheme IRC Services 'mycertfp_delete()' Function Security Bypass Vulnerability
http://www.securityfocus.com/bid/52675

Wireshark Multiple Dissector Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/53651

iFOBS 'regclientmain.jsp' Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/55607

SquidClamav URL Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/54663

International Components for Unicode '_canonicalize( )' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/51006

TLS Protocol CVE-2012-4929 Information Disclosure Vulnerability
http://www.securityfocus.com/bid/55704

Adobe Flash Player and AIR 'copyRawDataTo()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/55691

Max Forum Max 'act' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/55679

QNX Qconn Remote Arbitrary Command Execution Vulnerability
http://www.securityfocus.com/bid/55677

Google Chrome Prior to 22.0.1229.79 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/55676

ViArt Shop Enterprise 'sips_response.php' Remote Arbitrary Command Execution Vulnerability
http://www.securityfocus.com/bid/55674

LibTIFF TIFF Image Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55673

Oracle Java SE Unspecified Security Bypass Vulnerability
http://www.securityfocus.com/bid/55669

IBM Informix Dynamic Server CVE-2012-3334 Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55668

WordPress Token Manager Plugin 'tid' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55664