+ 2014 年 9 月のマイクロソフト セキュリティ情報の概要
https://technet.microsoft.com/ja-jp/library/security/ms14-sep
+ MS14-052 - 緊急 Internet Explorer 用の累積的なセキュリティ更新プログラム (2977629)
https://technet.microsoft.com/library/security/MS14-052
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7331
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4059
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4065
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4079
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4080
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4081
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4082
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4083
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4084
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4085
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4086
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4099
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4100
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4101
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4103
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4104
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4105
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4106
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4107
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4109
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4111
+ MS14-053 - 重要 .NET Framework の脆弱性により、サービス拒否が起こる (2990931)
https://technet.microsoft.com/library/security/MS14-053
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4072
+ MS14-054 - 重要 Windows タスク スケジューラの脆弱性により、特権が昇格される (2988948)
https://technet.microsoft.com/library/security/MS14-054
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4074
+ MS14-055 - 重要 Microsoft Lync Server の脆弱性により、サービス拒否が起こる (2990928)
https://technet.microsoft.com/library/security/MS14-055
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4071
+ UPDATE: マイクロソフト セキュリティ アドバイザリ 2905247 ASP.NET のサイト構成が安全ではないため、特権が昇格される
https://technet.microsoft.com/ja-jp/library/security/2905247
+ UPDATE: マイクロソフト セキュリティ アドバイザリ 2871997 資格情報の保護と管理を改善する更新プログラム
https://technet.microsoft.com/ja-jp/library/security/2871997
+ UPDATE: マイクロソフト セキュリティ アドバイザリ (2755801) Internet Explorer 上の Adobe Flash Player の脆弱性に対応する更新プログラム
https://technet.microsoft.com/ja-jp/library/security/2755801
+ RHSA-2014:1167 Important: kernel security and bug fix update
https://rhn.redhat.com/errata/RHSA-2014-1167.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0205
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3535
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3917
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4667
+ APSB14-21 Security updates available for Adobe Flash Player
http://helpx.adobe.com/security/products/flash-player/apsb14-21.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0548
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0550
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0551
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0552
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0553
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0554
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0556
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0559
+ UPDATE: APSB14-20 Prenotification Security Advisory for Adobe Reader and Acrobat
http://helpx.adobe.com/security/products/reader/apsb14-20.html
+ CESA-2014:1166 Important CentOS 7 jakarta-commons-httpclient Security Update
http://lwn.net/Alerts/611321/
+ CESA-2014:1166 Important CentOS 6 jakarta-commons-httpclient Security Update
http://lwn.net/Alerts/611320/
+ CESA-2014:1166 Important CentOS 5 jakarta-commons-httpclient Security Update
http://lwn.net/Alerts/611319/
+ HPSBMU03075 rev.1 - HP Network Node Manager I (NNMi) for Windows and Linux, Remote Execution of Arbitrary Code
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04378450-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2624
+ HPSBST03106 rev.1 - HP P2000 G3 MSA Array System running OpenSSL, Remote Unauthorized Access or Disclosure of Information
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04438404-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224
+ HPSBUX03102 SSRT101681 rev.1 - HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Execution of Arbitrary Code and Denial of Service (DoS) and Other Vulnerabilities
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04223376-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6438
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0099
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0119
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0207
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3478
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3479
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3487
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3515
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3981
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4049
+ VMSA-2014-0008 VMware vSphere product updates to third party libraries
http://www.vmware.com/security/advisories/VMSA-2014-0008.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4590
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4322
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0050
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242
+ FreeBSD-SA-14:18.openssl OpenSSL multiple vulnerabilities
http://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3506
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3507
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3508
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3510
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3509
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3511
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3512
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5139
+ SA60988 Google Chrome Multiple Vulnerabilities
http://secunia.com/advisories/60988/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0548
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0550
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0551
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0552
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0553
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0554
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0556
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0559
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3178
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3179
Introducing Open PostgreSQL Monitoring (OPM)
http://www.postgresql.org/about/news/1542/
JVNDB-2014-000104 Movable Type におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-000104.html
REMOTE: ManageEngine Desktop Central StatusUpdate Arbitrary File Upload
http://www.exploit-db.com/exploits/34594
REMOTE: ALCASAR 2.8 Remote Root Code Execution Vulnerability
http://www.exploit-db.com/exploits/34595
DoS/PoC: PHP Stock Management System 1.02 - Multiple Vulnerabilty
http://www.exploit-db.com/exploits/34588
0 件のコメント:
コメントを投稿