2日 木曜日、先勝

+ UPDATE: Multiple Vulnerabilities in Cisco Unified Computing System
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-ucsmulti

+ HPSBUX02876 SSRT101148 rev.1 - HP-UX Running BIND, Remote Denial of Service (DoS)
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03750073-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2266

+ REMOTE: phpMyAdmin Authenticated Remote Code Execution via preg_replace()
http://www.exploit-db.com/exploits/25136

+ LOCAL: sudo v1.8.0-1.8.3p1 (sudo_debug) - Root Exploit + glibc FORTIFY_SOURCE Bypass
http://www.exploit-db.com/exploits/25134

+ Linux Kernel KVM CVE-2013-1798 Denial of Service Vulnerability
http://www.securityfocus.com/bid/58604
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1798

緊急サーバメンテナンスを実施しました
http://www.trendmicro.co.jp/support/news.asp?id=1951

2013年5月の呼びかけ
「 スマホにおける新たなワンクリック請求の手口に気をつけよう！ 」
http://www.ipa.go.jp/security/txt/2013/05outline.html

「Struts 2の脆弱性を突いて不正侵入」、JINS通販サイトのカード情報漏洩
http://itpro.nikkeibp.co.jp/article/NEWS/20130501/474536/?ST=security

JVNVU#98097798 IBM Notes のメールクライアントに Java および Javascript が実行される問題
http://jvn.jp/cert/JVNVU98097798/

REMOTE: Wordpress W3 Total Cache PHP Code Execution
http://www.exploit-db.com/exploits/25137

DoS/PoC: Syslog Watcher Pro 2.8.0.812 - (Date Parameter) - Cross Site Scripting Vulnerability
http://www.exploit-db.com/exploits/25135

DoS/PoC: WPS Office Wpsio.dll - Stack Buffer Overflow Vulnerability
http://www.exploit-db.com/exploits/25140