+ UPDATE: GNU Bash Environment Variable Command Injection Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash
+ Multiple Vulnerabilities in Cisco ASA Software
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141008-asa
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3382
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3385
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3390
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3391
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3392
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3393
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3394
+ HPSBGN03108 rev.1 - HP Records Manager, Remote Cross-Site Scripting (XSS)
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04441391-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4661
+ Linux kernel 3.12.30 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.30
+ Sudo 1.8.11p1 released
http://www.sudo.ws/sudo/stable.html#1.8.11p1
+ Bugzilla Bugs Let Remote Users Create Unauthorized, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information
http://www.securitytracker.com/id/1030978
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1571
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1572
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1573
+ VU#573356 IBM WebSphere Application Server contains multiple vulnerabilities
http://www.kb.cert.org/vuls/id/573356
+ Bugzilla Account Creation / XSS / Information Leak
http://cxsecurity.com/issue/WLB-2014100045
+ SA61757 Google Chrome for iOS Facetime Unspecified Vulnerability
http://secunia.com/advisories/61757/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3187
+ SA61755 Google Chrome Multiple Vulnerabilities
http://secunia.com/advisories/61755/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3188
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3189
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3190
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3191
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3192
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3193
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3194
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3196
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3198
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3199
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3200
+ Linux Kernel CVE-2014-7975 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/70314
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7975
【社長に説明できるセキュリティ】
攻撃者はもう使っている、アタックを成功させるマーケティング手法とは
http://itpro.nikkeibp.co.jp/atcl/column/14/511845/100300003/?ST=security
JALが最大75万件の顧客情報漏洩 ドコモ、佐川、ヤマト、JR東も攻撃受ける
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/100700073/?ST=security
シスコ、次世代ファイアウォールにIPSやマルウエア検知のオプションを用意
http://itpro.nikkeibp.co.jp/atcl/news/14/100801276/?ST=security
0 件のコメント:
コメントを投稿