2014年7月18日金曜日

18日 金曜日、先負










+ HPSBHF02913 rev.1 - HP Intelligent Management Center (iMC) and HP Branch Intelligent Management System (BIMS), Remote Disclosure of Information
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04369484-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2618
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2619
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2620
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2621
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2622

+ UPDATE: HPSBMU03072 SSRT101644 rev.2 - HP Data Protector, Remote Execution of Arbitrary Code
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04373818-2%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken

+ Linux kernel 3.15.6, 3.14.13, 3.10.49, 3.4.99 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.6
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.13
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.49
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.99

+ Microsoft Internet Explorer CSS import Memory Corruption
http://cxsecurity.com/issue/WLB-2014070093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1763

+ Microsoft Internet Explorer Request Object Confusion Sandbox Bypass
http://cxsecurity.com/issue/WLB-2014070092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1764

+ Microsoft Windows DirectShow Privilege Escalation
http://cxsecurity.com/issue/WLB-2014070091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2780

+ Microsoft Internet Explorer ShowSaveFileDialog() Sandbox Bypass
http://cxsecurity.com/issue/WLB-2014070090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2777

+ SA60078 Google Chrome for Android Spoofing and Security Bypass Vulnerabilities
http://secunia.com/advisories/60078/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3159
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3161

+ SA60077 Google Chrome Multiple Vulnerabilities
http://secunia.com/advisories/60077/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3160
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3162

チェックしておきたい脆弱性情報<2014.07.18>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/071400005/?ST=security

ベネッセ情報漏洩事件容疑者は「ベテランで中心的な役割」、謝罪会見一問一答
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/071700013/?ST=security

【実例で解き明かす、標的型サイバー攻撃の危険度】
「侵入されること」を前提に、攻撃への対応体制構築が急務
http://itpro.nikkeibp.co.jp/article/COLUMN/20140701/567916/?ST=security

ベネッセ、お詫び対応の200億円でも取り戻せないもの
http://itpro.nikkeibp.co.jp/atcl/column/14/509445/071700008/?ST=security

ベネッセが容疑者逮捕を受け緊急会見、お詫び対応に200億円
http://itpro.nikkeibp.co.jp/atcl/news/14/071700118/?ST=security

ベネッセ顧客情報漏洩、DB管理の技術者を逮捕
http://itpro.nikkeibp.co.jp/atcl/news/14/071700105/?ST=security

0 件のコメント:

コメントを投稿