2013年1月9日水曜日

9日 水曜日、友引


+ マイクロソフト 2013 年 1 月のセキュリティ情報
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-jan

+ MS13-001 - 緊急 Windows 印刷スプーラー コンポーネントの脆弱性により、リモートでコードが実行される (2769369)
https://technet.microsoft.com/ja-jp/security/bulletin/ms13-001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0011

+ MS13-002 - 緊急 XML コア サービスの脆弱性により、リモートでコードが実行される (2756145)
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-002
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0006
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0007

+ MS13-003 - 重要 System Center Operations Manager の脆弱性により、特権が昇格される (2748552)
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0009
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0010

+ MS13-004 - 重要 .NET Framework の脆弱性により、特権が昇格される (2769324)
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-004
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0002
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0004

+ MS13-005 - 重要 Windows カーネルモード ドライバーの脆弱性により、特権が昇格される (2778930)
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-005
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0008

+ MS13-006 - 重要 Microsoft Windows の脆弱性により、セキュリティ機能のバイパスが起こる (2785220)
https://technet.microsoft.com/ja-jp/security/bulletin/ms13-006
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0013

+ MS13-007 - 重要 Open Data プロトコルの脆弱性により、サービス拒否が起こる (2769327)
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-007
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0005

+ RHSA-2013:0145 Critical: thunderbird security update
http://rhn.redhat.com/errata/RHSA-2013-0145.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0744
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0746
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0748
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0750
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0754
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0758
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0759
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0762
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0766
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0767
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0769

+ RHSA-2013:0144 Critical: firefox security update
http://rhn.redhat.com/errata/RHSA-2013-0144.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0744
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0746
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0748
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0750
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0754
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0758
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0759
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0762
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0766
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0767
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0769

+ Mozilla Firefox 18.0 released
http://www.mozilla.jp/firefox/18.0/releasenotes/

+ MFSA 2013-20 Mis-issued TURKTRUST certificates
http://www.mozilla.org/security/announce/2013/mfsa2013-20.html

+ MFSA 2013-19 Use-after-free in Javascript Proxy objects
http://www.mozilla.org/security/announce/2013/mfsa2013-19.html

+ MFSA 2013-18 Use-after-free in Vibrate
http://www.mozilla.org/security/announce/2013/mfsa2013-18.html

+ MFSA 2013-17 Use-after-free in ListenerManager
http://www.mozilla.org/security/announce/2013/mfsa2013-17.html

+ MFSA 2013-16 Use-after-free in serializeToStream
http://www.mozilla.org/security/announce/2013/mfsa2013-16.html

+ MFSA 2013-15 Privilege escalation through plugin objects
http://www.mozilla.org/security/announce/2013/mfsa2013-15.html

+ MFSA 2013-14 Chrome Object Wrapper (COW) bypass through changing prototype
http://www.mozilla.org/security/announce/2013/mfsa2013-14.html

+ MFSA 2013-13 Memory corruption in XBL with XML bindings containing SVG
http://www.mozilla.org/security/announce/2013/mfsa2013-13.html

+ MFSA 2013-12 Buffer overflow in Javascript string concatenation
http://www.mozilla.org/security/announce/2013/mfsa2013-12.html

+ MFSA 2013-11 Address space layout leaked in XBL objects
http://www.mozilla.org/security/announce/2013/mfsa2013-11.html

+ MFSA 2013-10 Event manipulation in plugin handler to bypass same-origin policy
http://www.mozilla.org/security/announce/2013/mfsa2013-10.html

+ MFSA 2013-09 Compartment mismatch with quickstubs returned values
http://www.mozilla.org/security/announce/2013/mfsa2013-09.html

+ MFSA 2013-08 AutoWrapperChanger fails to keep objects alive during garbage collection
http://www.mozilla.org/security/announce/2013/mfsa2013-08.html

+ MFSA 2013-07 Crash due to handling of SSL on threads
http://www.mozilla.org/security/announce/2013/mfsa2013-07.html

+ MFSA 2013-06 Touch events are shared across iframes
http://www.mozilla.org/security/announce/2013/mfsa2013-06.html

+ MFSA 2013-05 Use-after-free when displaying table with many columns and column groups
http://www.mozilla.org/security/announce/2013/mfsa2013-05.html

+ MFSA 2013-04 URL spoofing in addressbar during page loads
http://www.mozilla.org/security/announce/2013/mfsa2013-04.html

+ MFSA 2013-03 Buffer Overflow in Canvas
http://www.mozilla.org/security/announce/2013/mfsa2013-03.html

+ MFSA 2013-02 Use-after-free and buffer overflow issues found using Address Sanitizer
http://www.mozilla.org/security/announce/2013/mfsa2013-02.html

+ MFSA 2013-01 Miscellaneous memory safety hazards (rv:18.0/ rv:10.0.12 / rv:17.0.2)
http://www.mozilla.org/security/announce/2013/mfsa2013-01.html

+ MFSA 2012-98 Firefox installer DLL hijacking
http://www.mozilla.org/security/announce/2012/mfsa2012-98.html

+ Mozilla Thunderbird 17.0.2 released
http://www.mozilla.org/en-US/thunderbird/17.0.2/releasenotes/

+ Microsoft Security Advisory (973811) Extended Protection for Authentication
http://technet.microsoft.com/en-us/security/advisory/973811

+ Microsoft Security Advisory (2755801) Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10
http://technet.microsoft.com/en-us/security/advisory/2755801

+ マイクロソフト セキュリティ アドバイザリ (973811) 認証に対する保護の強化
http://technet.microsoft.com/ja-jp/security/advisory/973811

+ マイクロソフト セキュリティ アドバイザリ (2755801) Internet Explorer 10 上の Adobe Flash Player の脆弱性用の更新プログラム
http://technet.microsoft.com/ja-jp/security/advisory/2755801

+ RHSA-2013:0133 Low: hplip3 security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0133.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2722

+ RHSA-2013:0130 Low: httpd security, bug fix, and enhancement update
http://rhn.redhat.com/errata/RHSA-2013-0130.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0455
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0456
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2687

+ RHSA-2013:0129 Moderate: ruby security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0129.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4522

+ RHSA-2013:0132 Low: autofs security, bug fix, and enhancement update
http://rhn.redhat.com/errata/RHSA-2013-0132.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2697

+ RHSA-2013:0135 Low: gtk2 security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0135.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2370

+ RHSA-2013:0125 Moderate: wireshark security, bug fix, and enhancement update
http://rhn.redhat.com/errata/RHSA-2013-0125.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1958
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1959
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2698
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0041
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0042
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0066
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0067
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4289
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4290
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4291

+ RHSA-2013:0126 Low: squirrelmail security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0126.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2124

+ RHSA-2013:0134 Low: freeradius2 security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0134.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4966

+ RHSA-2013:0122 Moderate: tcl security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0122.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4772
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6067

+ RHSA-2013:0124 Moderate: net-snmp security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0124.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2141

+ RHSA-2013:0144 Critical: firefox security update
http://rhn.redhat.com/errata/RHSA-2013-0144.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0744
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0746
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0748
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0750
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0754
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0758
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0759
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0762
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0766
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0767
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0769

+ RHSA-2013:0120 Low: quota security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0120.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3417

+ RHSA-2013:0123 Low: OpenIPMI security, bug fix, and enhancement update
http://rhn.redhat.com/errata/RHSA-2013-0123.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4339

+ RHSA-2013:0121 Low: mysql security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0121.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4452

+ RHSA-2013:0131 Low: gnome-vfs2 security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0131.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2473

+ ActivePerl 5.12.4.1206, 5.14.3.1404 released
http://docs.activestate.com/activeperl/5.12/release.html
http://docs.activestate.com/activeperl/5.14/release.html

+ Linux Kernel '/dev/ptmx' File Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/57176
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0160

Fraudulent digital certificates issued by TURKTRUST Inc.
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk91001&src=securityAlerts

Check Point response to XSS and CSRF vulnerabilities in Mobile Access Blade portal
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk91000&src=securityAlerts

「アカウントの確認を」――三菱東京UFJ銀行をかたるフィッシング
偽メールの日本語は不自然、リンクの表示URLは正規ドメイン
http://itpro.nikkeibp.co.jp/article/NEWS/20130109/448383/?ST=security

「最速充電」や「アプリ福袋」に注意、日本語のAndroidウイルス相次ぐ
Google Playの偽サイト「Gcogle Play」で配布、個人情報を勝手に収集
http://itpro.nikkeibp.co.jp/article/NEWS/20130109/448382/?ST=security

UCC上島珈琲のWebサイトで不正アクセス、約47万人の個人情報が改ざん被害
http://itpro.nikkeibp.co.jp/article/NEWS/20130108/448289/?ST=security

JVNDB-2012-005899 JBoss Enterprise Application Platform における EJB へアクセスされる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005899.html

JVNDB-2012-005898 JBoss Enterprise Application Platform におけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005898.html

JVNDB-2012-005897 Apache CXF における子ポリシーを回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005897.html

JVNDB-2012-005896 FFmpeg および Libav の H.263 コーデックにおける脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005896.html

JVNDB-2012-005895 Red Hat CloudForms における Grinder のキャッシュファイルを変更される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005895.html

JVNDB-2012-005894 Red Hat CloudForms の Katello における利用者の証明書情報を読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005894.html

JVNDB-2012-005893 LibTIFF の tif_dir.c におけるスタックベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005893.html

JVNDB-2012-005892 Red Hat Enterprise Virtualization Manager における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005892.html

JVNDB-2012-005891 Red Hat CloudForms の Pulp における管理者パスワードを読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005891.html

JVNDB-2012-005890 Red Hat Certificate System の Token Processing System におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005890.html

JVNDB-2012-005889 Red Hat Certificate System におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005889.html

JVNDB-2012-005888 Red Hat Certificate System におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005888.html

JVNDB-2012-005887 Red Hat CloudForm における pulp の管理者パスワードを読み取られる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005887.html

JVNDB-2012-005886 Red Hat Enterprise Virtualization Manager における任意の情報についてのクエリを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005886.html

JVNDB-2012-005885 Red Hat Enterprise Virtualization Manager における任意の Python コードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005885.html

JVNDB-2012-005884 Red Hat Enterprise Virtualization Manager における権限を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005884.html

JVNDB-2012-005883 Red Hat Enterprise Virtualization Manager における他のユーザのデスクトップセッションへアクセスされる脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005883.html

JVNDB-2013-001010 Centrify Suite に同梱されている Centrify Deployment Manager における任意のファイルを上書きされる脆弱性
http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001010.html

JVNDB-2012-005882 TWiki および Foswiki におけるサービス運用妨害 (メモリ消費) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005882.html

JVNDB-2013-001009 Perl の Locale::Maketext の実装における任意のコマンドを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001009.html

[SECURITY] [DSA 2602-1] zendframework security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2013-01/msg00030.html

[security bulletin] HPSBUX02829 SSRT100883 rev.1 - HP-UX Running X Font Server (xfs) Software, Local Denial of Service (DoS), Unauthorized Access
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2013-01/msg00029.html

ESA-2013-001: EMC NetWorker Buffer Overflow vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2013-01/msg00028.html

Cuckoo 0.5 is out and the world didn't end
http://isc.sans.edu/diary.html?storyid=14845

Yahoo Web Interface Report: Compose and Send
http://isc.sans.edu/diary.html?storyid=14848

A picture worth a 1000 barcodes?
http://isc.sans.edu/diary.html?storyid=14851

Microsoft January 2013 Black Tuesday Update - Overview
http://isc.sans.edu/diary.html?storyid=14854

VU#380039 Ruby on Rails contains multiple vulnerabilities in parameter parsing in the Action Pack framework
http://www.kb.cert.org/vuls/id/380039

Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1027952

Adobe Flash Player Buffer Overflow Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027950

Microsoft .NET Open Data (OData) Protocol Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027949

Microsoft System Center Configuration Manager Input Validation Flaws Permit Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1027948

Windows TCP/IP Stack Lets Remote Users Downgrade SSL/TLS Sessions
http://www.securitytracker.com/id/1027947

Windows Kernel-Mode Drivers Bug Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1027946

Microsoft .NET Flaws Let Remote Users Execute Arbitrary Code, Obtain Potentially Sensitive Information, and Bypass Security Restrictions
http://www.securitytracker.com/id/1027945

Windows Print Spooler Bug Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027944

Microsoft XML Core Services (MSXML) XML Parsing Flaws Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027943

EMC NetWorker Buffer Overflow Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1027941

REMOTE: IBM Cognos tm1admsd.exe Overflow Vulnerability
http://www.exploit-db.com/exploits/23969

Limbo cms content SQL Injection
http://cxsecurity.com/issue/WLB-2013010069

Saggitarius CMS SQL Injection Vulnerability
http://cxsecurity.com/issue/WLB-2013010068

Atomymaxsite 2.5 Unrestricted file upload vulnerability
http://cxsecurity.com/issue/WLB-2013010067

Cisco RVxxxW wireless routers weak RSA key generation
http://cxsecurity.com/issue/WLB-2013010066

IBM Cognos tm1admsd.exe Overflow
http://cxsecurity.com/issue/WLB-2013010065

Advantech WebAccess HMI/SCADA Software Persistence Cross-Site Scripting
http://cxsecurity.com/issue/WLB-2013010064

WordPress Plugin Google Document Embedder Arbitrary File Disclosure
http://cxsecurity.com/issue/WLB-2013010063

E SMS Script SQL Injection
http://cxsecurity.com/issue/WLB-2013010062

Facebook For Android Information Disclosure
http://cxsecurity.com/issue/WLB-2013010061

Chrome For Android Cookie Theft
http://cxsecurity.com/issue/WLB-2013010051

Chrome For Android Bypassing SOP Flaw
http://cxsecurity.com/issue/WLB-2013010052

Chrome For Android Download Function Information Disclosure
http://cxsecurity.com/issue/WLB-2013010060

Chrome For Android API Exposure
http://cxsecurity.com/issue/WLB-2013010059

Chrome For Android Universal Cross Site Scripting
http://cxsecurity.com/issue/WLB-2013010058

Joomla Ignite Gallery 0.8.3.1 SQL Injection
http://cxsecurity.com/issue/WLB-2013010057

Webimage Remote Shell Upload
http://cxsecurity.com/issue/WLB-2013010056

WordPress Spam Free 1.9.2 Filter Bypass
http://cxsecurity.com/issue/WLB-2013010055

Joomla LiveChat 2.0 XSS & SQL Injection
http://cxsecurity.com/issue/WLB-2013010054

XML Sitemap Generator for Wordpress (Google XML Sitemaps) Code Injection
http://cxsecurity.com/issue/WLB-2013010053

Foxit Reader <= 5.4.4.1128 npFoxitReaderPlugin.dll Stack Buffer Overflow
http://cxsecurity.com/issue/WLB-2013010048

Drupal 6.x->7.18 getimagesize() <= Multiple Vulnerabilities
http://cxsecurity.com/issue/WLB-2013010050

UploadiFive Arbitrary File Upload Vulnerability
http://cxsecurity.com/issue/WLB-2013010049

WordPress OpenInviter Information Disclosure
http://cxsecurity.com/issue/WLB-2013010047

Ettercap <= 0.7.5.1 Stack Overflow Vulnerability
http://cxsecurity.com/issue/WLB-2013010046

Microsoft XML Core Services Integer Truncation and XSLT Parsing Vulnerabilities
http://secunia.com/advisories/51773/

Microsoft Windows Flash Player Buffer Overflow Vulnerability
http://secunia.com/advisories/51728/

Adobe Flash Player / AIR Buffer Overflow Vulnerability
http://secunia.com/advisories/51771/

Microsoft .NET Framework Open Data Protocol "Replace()" Denial of Service Vulnerability
http://secunia.com/advisories/51772/

Microsoft Windows SSLv3/TLS Version Negotiation Downgrade Vulnerability
http://secunia.com/advisories/51724/

Microsoft Windows win32k.sys Window Broadcast Message Handling Vulnerability
http://secunia.com/advisories/51704/

Microsoft System Center Operations Manager Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/51686/

Microsoft .NET Framework Multiple Vulnerabilities
http://secunia.com/advisories/51777/

Microsoft Windows Print Spooler Print Job Processing Vulnerability
http://secunia.com/advisories/51640/

Gentoo update for Multiple Packages
http://secunia.com/advisories/51766/

Sybase Adaptive Server Enterprise Multiple Vulnerabilities
http://secunia.com/advisories/51737/

Astium SQL Injection and Denial of Service Vulnerabilities
http://secunia.com/advisories/51675/

Foxit Reader Plugin For Browsers URL Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/51733/

SUSE update for mariadb
http://secunia.com/advisories/51778/

Red Hat update for freeradius2
http://secunia.com/advisories/51729/

Website Baker Concert Calendar Add-on Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/51750/

Red Hat update for tcl
http://secunia.com/advisories/51743/

Red Hat update for wireshark
http://secunia.com/advisories/51738/

Red Hat update for httpd
http://secunia.com/advisories/51727/

HP OpenVMS update for Java
http://secunia.com/advisories/51776/

Red Hat update for quota
http://secunia.com/advisories/51751/

Red Hat update for mysql
http://secunia.com/advisories/51745/

Red Hat update for squirrelmail
http://secunia.com/advisories/51730/

Red Hat update for gnome-vfs2
http://secunia.com/advisories/51720/

Red Hat update for hplip3
http://secunia.com/advisories/51711/

Red Hat update for OpenIPMI
http://secunia.com/advisories/51744/

Red Hat update for gtk2
http://secunia.com/advisories/51726/

Red Hat update for ruby
http://secunia.com/advisories/51723/

SUSE update for mysql-community-server
http://secunia.com/advisories/51779/

Red Hat update for JBoss Enterprise Portal Platform
http://secunia.com/advisories/51775/

Red Hat update for net-snmp
http://secunia.com/advisories/51774/

Nagios Core 'get_history()' Function Stack Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56879

Apache Tomcat CVE-2012-3546 Security Bypass Vulnerability
http://www.securityfocus.com/bid/56812

Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2013-01 through -20 Multiple Vulnerabilities
http://www.securityfocus.com/bid/57185

Adobe Shockwave Player CVE-2012-0759 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52006

RETIRED: IBM Tivoli Directory Server Web Admin Tool Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53194

IBM Tivoli Directory Server Web Admin Tool Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52844

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5829 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56636

Adobe Acrobat and Reader APSB13-02 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/57155

RETIRED: Microsoft January 2013 Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/57137

Zend Framework 'Zend_Feed' Component Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/56982

X11 and XFree86 CVE-2012-1699 Local Information Disclosure and Denial of Service Vulnerability
http://www.securityfocus.com/bid/57047

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4190 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56151

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4191 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56153

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3990 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56131

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3995 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/56136

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4179 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56129

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4183 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56140

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4186 Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56135

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4185 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56127

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4187 Heap Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56125

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3992 Security Vulnerability
http://www.securityfocus.com/bid/56128

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-4180 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56126

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4181 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56130

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5838 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56644

Mozilla Firefox, SeaMonkey, and Thunderbird Multiple Remote Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/54578

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4182 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/56121

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-3993 Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/56119

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-4188 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56123

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4184 Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/56120

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0471 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53219

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0462 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52467

Mozilla Firefox CVE-2012-4206 Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/56625

Mozilla Firefox/Thunderbird/SeaMonkey 'cssText' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52457

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0461 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52464

Oracle Java SE CVE-2012-5068 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/56076

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4205 Cross-Site Request Forgery Vulnerability
http://www.securityfocus.com/bid/56621

Mozilla Firefox/Thunderbird/SeaMonkey 'ReadPrototypeBindings()' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/51975

Oracle Java SE CVE-2012-5069 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/56065

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-4201 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56618

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5836 Denial of Service Vulnerability
http://www.securityfocus.com/bid/56616

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4202 Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56614

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4204 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56613

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5843 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/56612

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5842 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/56611

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-4196 Cross-Origin Security Bypass Vulnerability
http://www.securityfocus.com/bid/56306

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-4195 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56302

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-4194 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56301

Mozilla Firefox/Thunderbird/SeaMonkey 'defaultValue()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/56155

Mozilla Firefox/Thunderbird/SeaMonkey Cross Domain Information Disclosure Vulnerability
http://www.securityfocus.com/bid/56154

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-3994 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56118

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3984 Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/55932

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3988 Use After Free Denial of Service Vulnerability
http://www.securityfocus.com/bid/55931

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3991 Security Bypass Vulnerability
http://www.securityfocus.com/bid/55930

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-3989 Denial of Service Vulnerability
http://www.securityfocus.com/bid/55927

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3985 Security Bypass Vulnerability
http://www.securityfocus.com/bid/55926

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-3982 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55924

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3986 Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/55922

Mozilla Firefox/SeaMonkey CVE-2012-3977 Information Disclosure Vulnerability
http://www.securityfocus.com/bid/55857

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3962 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55342

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3957 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55341

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3963 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55340

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3960 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55325

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3959 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55324

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3958 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55323

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3964 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55322

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3961 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55321

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3956 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55320

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1976 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55319

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1975 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55318

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1974 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55317

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1973 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55316

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1972 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55314

Mozilla Firefox/SeaMonkey CVE-2012-3976 Address Bar Spoofing Vulnerability
http://www.securityfocus.com/bid/55313

Mozilla Firefox/SeaMonkey/Thunderbird Information Disclosure Vulnerability
http://www.securityfocus.com/bid/55311

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-3972 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55310

Mozilla Firefox CVE-2012-3973 Security Bypass Vulnerability
http://www.securityfocus.com/bid/55308

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3978 Security Bypass Vulnerability
http://www.securityfocus.com/bid/55306

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3971 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55304

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-3969 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55292

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3970 Use-After-Free Memory CorruptionVulnerability
http://www.securityfocus.com/bid/55278

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3967 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/55277

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3968 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55276

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-3966 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55274

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1970 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55266

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1971 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/55264

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1956 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55260

Mozilla Firefox/Thunderbird Web Console CVE-2012-3980 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/55257

Mozilla Firefox CVE-2012-3965 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/55256

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1955 Location Bar Spoofing Vulnerability
http://www.securityfocus.com/bid/54586

Mozilla Firefox CVE-2012-1950 Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/54585

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1961 Clickjacking Vulnerability
http://www.securityfocus.com/bid/54584

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1957 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54583

Mozilla Firefox, SeaMonkey, and Thunderbird Information Disclosure Vulnerability
http://www.securityfocus.com/bid/54582

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-1964 Clickjacking Vulnerability
http://www.securityfocus.com/bid/54581

Mozilla Firefox/Thunderbird/Seamonkey MFSA 2012-42 Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/54580

Mozilla Firefox CVE-2012-1965 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54579

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5835 Integer Overflow Vulnerability
http://www.securityfocus.com/bid/56643

Mozilla Firefox CVE-2012-4210 Style Inspector Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/56646

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5839 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56637

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5833 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56642

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5830 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56641

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4216 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56634

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4215 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56633

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4212 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56630

Mozilla Firefox, SeaMonkey, and Thunderbird HZ-GB-2312 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56632

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-5841 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56631

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-5840 Use After Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56635

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4208 Security Bypass Vulnerability
http://www.securityfocus.com/bid/56627

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4209 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/56629

Mozilla Firefox/Thunderbird/SeaMonkey '.lnk' Files Information Disclosure Vulnerability
http://www.securityfocus.com/bid/53799

Mozilla Firefox/SeaMonkey/Thunderbird NSS Parsing Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/53798

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1938 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53796

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1939 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53797

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1940 Use After Free Vulnerability
http://www.securityfocus.com/bid/53794

Mozilla Firefox CVE-2012-1966 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/54577

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1959 Security Bypass Vulnerability
http://www.securityfocus.com/bid/54576

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1958 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54574

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1967 Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/54573

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1962 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54575

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1960 Out of Bounds Memory Corruption Vulnerability
http://www.securityfocus.com/bid/54572

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1941 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/53793

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-1937 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53800

HP Systems Insight Manager Unspecified Multiple Remote Security Vulnerabilities
http://www.securityfocus.com/bid/53315

Mozilla Firefox/Thunderbird/SeaMonkey Use-After-Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/53792

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-1947 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/53791

gdk-pixbuf 'read_bitmap_file_data()' Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/53548

Neon 'ne_xml*' expat XML Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/36080

HP Linux Imaging and Printing Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/48892

Ruby CVE-2012-4522 Local File Creation Vulnerability
http://www.securityfocus.com/bid/56115

Apache 'mod_negotiation' HTML Injection and HTTP Response Splitting Vulnerability
http://www.securityfocus.com/bid/27409

Apache HTTP Server HTML-Injection And Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/55131

Ruby '#to_s' Method Incomplete Fix Security Bypass Vulnerability
http://www.securityfocus.com/bid/55813

libvirt CVE-2012-2693 Multiple Local Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/54126

Wireshark Buffer Underflow and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/51710

Wireshark ERF File Parser Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/50486

Wireshark Buffer Overflow and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/51368

Wireshark ANSI A MAP Files Denial of Service Vulnerability
http://www.securityfocus.com/bid/49071

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0473 Out of Bounds Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53231

Wireshark Versions Prior to 1.8.2 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/55035

Wireshark Versions Prior to 1.4.7/1.2.17 Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/48066

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0474 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53228

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0475 Security Bypass Vulnerability
http://www.securityfocus.com/bid/53230

Mozilla Firefox/Thunderbird/Seamonkey CVE-2012-0477 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/53229

Mozilla Firefox, SeaMonkey, and Thunderbird CVE-2012-0470 Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/53225

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-0478 Denial of Service Vulnerability
http://www.securityfocus.com/bid/53227

Mozilla Firefox/SeaMonkey/Thunderbird Site Identity Spoofing Vulnerability
http://www.securityfocus.com/bid/53224

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0467 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53223

Mozilla Firefox/Thunderbird/SeaMonkey IDBKeyRange Use-After-Free Vulnerability
http://www.securityfocus.com/bid/53220

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0468 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53221

Net-SNMP SNMP GET Request Denial of Service Vulnerability
http://www.securityfocus.com/bid/53255

OpenIPMI 'ipmievd' Daemon PID Files Insecure File Permissions Vulnerability
http://www.securityfocus.com/bid/51036

PostgreSQL Multiple Privilege Escalation and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/27163

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0463 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52466

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-0458 Security Bypass Vulnerability
http://www.securityfocus.com/bid/52460

Mozilla Firefox/Thunderbird/SeaMonkey HTTP Header Security Bypass Vulnerability
http://www.securityfocus.com/bid/52463

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0456 SVG Filters Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52461

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0457 Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52459

Mozilla Firefox/Thunderbird/SeaMonkey 'array.join' CVE-2012-0464 Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52465

Mozilla Firefox, Thunderbird, and SeaMonkey Drag and Drop Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52458

Mozilla Firefox/SeaMonkey/Thunderbird 'window.fullScreen' Security Bypass Vulnerability
http://www.securityfocus.com/bid/52456

Mozilla Firefox/Thunderbird/Seamonkey Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/51756

Mozilla Firefox/Thunderbird/SeaMonkey Ogg Vorbis Files Memory Corruption Vulnerability
http://www.securityfocus.com/bid/51753

Mozilla Firefox/SeaMonkey/Thunderbird Cross Domain Security Bypass Vulnerability
http://www.securityfocus.com/bid/51765

Mozilla Firefox/SeaMonkey/Thunderbird XSLT Stylesheets Denial of Service Vulnerability
http://www.securityfocus.com/bid/51754

Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0447 Information Disclosure Vulnerability
http://www.securityfocus.com/bid/51757

Mozilla Firefox and SeaMonkey 'Firefox Recovery Key.html' Insecure File Permissions Vulnerability
http://www.securityfocus.com/bid/51787

Mozilla Firefox/SeaMonkey/Thunderbird XPConnect Security Check Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/51752

Havalite CMS 'comment' Parameter HTML Injection Vulnerability
http://www.securityfocus.com/bid/57169

Linux DiskQuota 'hosts_ctl()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/55066

TomatoCart 'json.php' Security Bypass Vulnerability
http://www.securityfocus.com/bid/57156

Ruby on Rails CVE-2013-0156 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/57187

E SMS Script Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/57186

Adobe Flash Player and AIR CVE-2013-0630 Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/57184

Advantech WebAccess HMI/SCADA HTML Injection Vulnerability
http://www.securityfocus.com/bid/57178

Linux Kernel '/dev/ptmx' File Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/57176

Microsoft Windows SSLv3/TLS CVE-2013-0013 Security Bypass Vulnerability
http://www.securityfocus.com/bid/57144

Microsoft Windows Print Spooler Service CVE-2013-0011 Code Execution Vulnerability
http://www.securityfocus.com/bid/57142

Microsoft OData CVE-2013-0005 Denial of Service Vulnerability
http://www.securityfocus.com/bid/57141

Microsoft Windows CVE-2013-0008 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/57135

Microsoft .NET Framework CVE-2013-0002 Remote Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/57126

Microsoft .NET Framework CVE-2013-0001 Information Disclosure Vulnerability
http://www.securityfocus.com/bid/57124

Microsoft XML Core Services CVE-2013-0007 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/57122

Microsoft XML Core Services CVE-2013-0006 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/57116

Microsoft .NET Framework CVE-2013-0003 Remote Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/57114

Microsoft .NET Framework CVE-2013-0004 Remote Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/57113

Microsoft System Center Operations Manager CVE-2013-0010 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55408

Microsoft System Center Operations Manager CVE-2013-0009 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/55401

0 件のコメント:

コメントを投稿