2013年11月15日金曜日

15日 金曜日、仏滅

+ About the security content of iOS 7.0.4
http://support.apple.com/kb/HT6058
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5193

+ PHP 5.5.6 is now available
http://php.net/archive/2013.php#id2013-11-14-1

+ Linux kernel net large udp packet over IPv6 over UFO-enabled device with TBF qdisc panic
http://cxsecurity.com/issue/WLB-2013110096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4563

+ Microsoft CryptoAPI / Outlook 2007-2013 Design Bug
http://cxsecurity.com/issue/WLB-2013110092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3905
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3870

+ Apple iOS Lets Local Users Make App Purchases Without Authorization
http://www.securitytracker.com/id/1029346
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5193

+ Samba Lets Local Users Access the SSL Private Key File
http://www.securitytracker.com/id/1029338
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4476

+ Samba VFS Alternate Data Stream File Access Control Flaw Lets Remote Users Bypass Access Controls
http://www.securitytracker.com/id/1029337
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4475

+ Linux Kernel TBF Scheduler UDP Processing Flaw Lets Local Users Deny Service
http://www.securitytracker.com/id/1029336
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4563

+ REMOTE: Symantec Altiris DS SQL Injection
http://www.exploit-db.com/exploits/29552

+ SA55677 JustSystems Multiple Products Unspecified Code Execution Vulnerability
http://secunia.com/advisories/55677/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5990

+ Apple iOS CVE-2013-5193 Local Security Bypass Vulnerability
http://www.securityfocus.com/bid/63723
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5193

+ Apple iOS Safari Mobile Web Browser Session Fixation and Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/63724

+ Linux Kernel CVE-2013-4563 Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/63702
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4563

Check Point response to Media Encryption EPM Explorer lockout bypass
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589&src=securityAlerts

Trend Micro Security (for Mac) 2.0 Patch 1 (ビルド 1036) の公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=2036

独社製エンジンで検出率を向上、キングソフトがInternet Secutiryの新版を公開
http://itpro.nikkeibp.co.jp/article/NEWS/20131114/517992/?ST=security

WindowsやIEなどに危険な脆弱性、悪用した標的型攻撃も出現
http://itpro.nikkeibp.co.jp/article/NEWS/20131113/517856/?ST=security

VU#466876 EMC Documentum Product Suite version 6.7 contains a DOM based cross-site scripting vulnerability
http://www.kb.cert.org/vuls/id/466876

0 件のコメント:

コメントを投稿