9日 木曜日、友引

+ Selenium IDE 2.0.0 released
http://code.google.com/p/selenium/wiki/SeIDEReleaseNotes

+ Selenium The Internet Explorer Driver Server 2.32.2 released
http://docs.seleniumhq.org/download/

+ UPDATE: Cisco Prime Data Center Network Manager Remote Command Execution Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121031-dcnm

+ Multiple Vulnerabilities in Cisco Unified Customer Voice Portal Software
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130508-cvp
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1220
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1221
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1222
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1223
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1224
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1225

+ PSN-2013-05-938 2013-05 Security Bulletin: Network and Security Manager: Multiple Apache Axis2 vulnerabilities fixed
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-05-938&viewMode=view
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2103
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0219

+ PSN-2013-05-939 2013-05 Security Bulletin: Junos Space: CVE-2013-3497 Password disclosure while viewing configuration
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-05-939&viewMode=view
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3497

+ PSN-2013-05-940 2013-05: Security Bulletin: SmartPass WLAN Security Management: CVE-2013-3498 XSS Vulnerability
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-05-940&viewMode=view
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3498

+ PSN-2013-05-941 2013-05 Security Bulletin: Steel Belted Radius: OpenSSL vulnerability CVE-2012-2110
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-05-941&viewMode=view
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2110

+ PSN-2013-05-942 2013-05 Network Management, Identity and Policy Control Security Advisories Released
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-05-942&viewMode=view

+ UPDATE: Microsoft Security Advisory (2847140) Vulnerability in Internet Explorer Could Allow Remote Code Execution
http://technet.microsoft.com/en-us/security/advisory/2847140

+ SYM13-004 Security Advisories Relating to Symantec Products - Symantec Brightmail Gateway Management Console Stored XSS
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130508_00
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1611

+ Samba 3.6.15 Available for Download
http://samba.org/samba/history/samba-3.6.15.html

+ LOCAL: Linux Kernel open-time Capability file_ns_capable() - Privilege Escalation Vulnerability
http://www.exploit-db.com/exploits/25307

+ Multiple Linux setuid output redirection vulnerabilities
http://cxsecurity.com/issue/WLB-2013040197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1959

+ Linux Kernel Capability file_ns_capable() Privilege Escalation Vulnerability
http://cxsecurity.com/issue/WLB-2013050069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1979

パスワードマネージャーのプログラムアップデートのお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1952

世界のセキュリティ・ラボから
9000万の「いいね！」が付いた偽Facebookページ
http://itpro.nikkeibp.co.jp/article/COLUMN/20130507/474933/?ST=security

波紋を呼ぶ「Google Glass」、使用を禁止する動きが米国で相次ぐ
http://itpro.nikkeibp.co.jp/article/NEWS/20130508/475281/?ST=security

JVN#61972596 Online Service Gate におけるパスワード管理不備の問題
http://jvn.jp/jp/JVN61972596/

UPDATE: JVNVU#97576465 Internet Explorer 8 に任意のコードが実行される脆弱性
http://jvn.jp/cert/JVNVU97576465/index.html