+ UPDATE: Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl
+ OpenSSL "hostname" TLS Extension memory leak
http://cxsecurity.com/issue/WLB-2015030097
+ Google App Engine Java security sandbox bypasses (details)
http://cxsecurity.com/issue/WLB-2015030096
LINEアプリに深刻なセキュリティ脆弱性、トーク履歴などを抜き取られる恐れ
http://itpro.nikkeibp.co.jp/atcl/news/15/031600958/?ST=security
Yahoo!、新たなログイン手法を追加、メール暗号化技術も年内実装へ
http://itpro.nikkeibp.co.jp/atcl/news/15/031600933/?ST=security
VU#184100 D-Link DAP-1320 Rev Ax is vulnerable to a command injection
http://www.kb.cert.org/vuls/id/184100
VU#377348 D-Link DCS-93xL model family allows unrestricted upload
http://www.kb.cert.org/vuls/id/377348
REMOTE: IPass Control Pipe Remote Command Execution
http://www.exploit-db.com/exploits/36412
REMOTE: ElasticSearch Search Groovy Sandbox Bypass
http://www.exploit-db.com/exploits/36415
LOCAL: Brasero CD/DVD Burner 3.4.1 - 'm3u' Buffer Overflow Crash PoC
http://www.exploit-db.com/exploits/36388
LOCAL: Foxit Reader 7.0.6.1126 - Unquoted Service Path Elevation Of Privilege
http://www.exploit-db.com/exploits/36390
DoS/PoC: WordPress SEO by Yoast 1.7.3.3 - Blind SQL Injection
http://www.exploit-db.com/exploits/36413
0 件のコメント:
コメントを投稿