2013年7月18日木曜日

18日 木曜日、仏滅

+ RHSA-2013:1090 Moderate: ruby security update
http://rhn.redhat.com/errata/RHSA-2013-1090.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073

+ CESA-2013:1051 Moderate CentOS 6 kernel Update
http://lwn.net/Alerts/559185/

+ PDFCreator 1.7.1 released
http://www.pdfforge.org/blog/pdfcreator-171-released

+ UPDATE: Multiple Vulnerabilities in Cisco Unified Communications Manager
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130717-cucm

+ Multiple Vulnerabilities in Cisco Intrusion Prevention System Software
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130717-ips
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1243
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1218
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3410
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3411

+ HPSBGN02882 rev.1 - HP Database and Middleware Automation (DMA) using SSL, Remote Disclosure of Information
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03788014-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2365

+ UPDATE: HPSBHF02888 rev.2 - HP Network Products including H3C and 3COM Routers and Switches, Remote Information Disclosure and Code Execution
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03808969-2%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken

+ UPDATE: HPSBMU02870 SSRT101012 rev.2 - HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03747342-2%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken

+ McAfee ePolicy Orchestrator Input Validation Flaws Permit Cross-Site Scripting and SQL Injection Attacks
http://www.securitytracker.com/id/1028803

+ Linux Kernel CVE-2013-4125 Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/61166
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4125

JVNDB-2013-000071 Oracle Outside In におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-000071.html

JVNDB-2013-000070 Oracle Outside In におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-000070.html

第3回 拡大するAndroid端末へのMITB攻撃、Firefoxに新たな脆弱性を発見
http://itpro.nikkeibp.co.jp/article/COLUMN/20130708/489845/?ST=security

セキュリティ・ホットトピックスITpro
たった3人の「友達承認」の罠、すべてのFacebook権限が奪われる
詳説・Facebook乗っ取り攻撃から身を守る(前)
http://itpro.nikkeibp.co.jp/article/COLUMN/20130717/491883/?ST=security

ニフティに2万1184件の不正ログイン、会員情報が閲覧された可能性
http://itpro.nikkeibp.co.jp/article/NEWS/20130717/492108/?ST=security

日本HPとフォーティネット、中堅中小企業向けのネットワークセキュリティソリューションで協業
http://itpro.nikkeibp.co.jp/article/NEWS/20130717/491923/?ST=security

Microsoft、情報開示要請に関するデータ公表について米司法長官に個人的関与を要求
http://itpro.nikkeibp.co.jp/article/NEWS/20130717/491882/?ST=security

情報開示要請を巡る訴訟文書、Yahoo!の機密解除要求が認められる
http://itpro.nikkeibp.co.jp/article/NEWS/20130717/491862/?ST=security

セキュリティ競技会「Hardening One Remix」、会津若松の「Team EJ」がグランプリ
http://itpro.nikkeibp.co.jp/article/NEWS/20130717/491842/?ST=security

LOCAL: BlazeDVD Pro player 6.1 - Stack Based Buffer Overflow (Direct Ret)
http://www.exploit-db.com/exploits/26889

0 件のコメント:

コメントを投稿