2014年2月20日木曜日

20日 木曜日、先負

+ CESA-2014:0186 Moderate CentOS 5 mysql55-mysql Update
http://lwn.net/Alerts/587111/

+ CESA-2014:0185 Moderate CentOS 6 openswan Update
http://lwn.net/Alerts/587112/

+ CESA-2014:0185 Moderate CentOS 5 openswan Update
http://lwn.net/Alerts/587113/

+ CVE-2012-6150 Input Validation vulnerability in Samba
https://blogs.oracle.com/sunsecurity/entry/cve_2012_6150_input_validation
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6150

+ CVE-2013-4408 Buffer Errors vulnerability in Samba
https://blogs.oracle.com/sunsecurity/entry/cve_2013_4408_buffer_errors
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4408

+ CVE-2006-4810 Buffer overflow vulnerability in Texinfo
https://blogs.oracle.com/sunsecurity/entry/cve_2006_4810_buffer_overflow
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4810

+ Multiple vulnerabilities in Kerberos
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_kerberos1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1417
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1418

+ Tomcat 7.0.52 Released
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html

+ PostgreSQL JDBC Driver 9.3-1101 released
http://jdbc.postgresql.org/download.html#jdbcselection

+ Cisco Firewall Services Module Flaw in Cut-Through Proxy Lets Remote Users Deny Service
http://www.securitytracker.com/id/1029784
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0710

+ Symantec Endpoint Protection 12.1 Multiple critical vulnerabilities
http://cxsecurity.com/issue/WLB-2014020156
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5015
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5014

体臭で生体認証、スペイン研究チームのレポート
http://itpro.nikkeibp.co.jp/article/COLUMN/20140218/537542/?ST=security

ショートカットに気をつけろ!進化する標的型攻撃の脅威
http://itpro.nikkeibp.co.jp/article/Watcher/20140217/537069/?ST=security

モバイルへの通知を確認するだけで済む二要素認証、ワンタイムパスワードの入力を不要に
http://itpro.nikkeibp.co.jp/article/NEWS/20140219/537762/?ST=security

Snowden文書が暴露、「WikiLeaks」も米政府の監視対象に---米ニュースサイトが報道
http://itpro.nikkeibp.co.jp/article/NEWS/20140219/537562/?ST=security

「MITB攻撃」のマルウエアをリモートで回収して解析、FFRIが新サービス
http://itpro.nikkeibp.co.jp/article/NEWS/20140218/537510/?ST=security

JVNVU#97009803 Belkin WeMo Home Automation 製品に複数の脆弱性
http://jvn.jp/vu/JVNVU97009803/index.html

REMOTE: WRT120N 1.0.0.7 Stack Overflow
http://www.exploit-db.com/exploits/31758

REMOTE: MediaWiki Thumb.php Remote Command Execution
http://www.exploit-db.com/exploits/31767

LOCAL: Audiotran PLS File Stack Buffer Overflow
http://www.exploit-db.com/exploits/31766

DoS/PoC: Catia V5-6R2013 "CATV5_AllApplications" - Stack Buffer Overflow
http://www.exploit-db.com/exploits/31762

DoS/PoC: SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 - Denial of Service
http://www.exploit-db.com/exploits/31763

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)