2015年4月3日金曜日

3日 金曜日、仏滅

+ PDFCreator 2.1.1 released
http://www.pdfforge.org/blog/pdfcreator-211-released
http://docs.pdfforge.org/pdfcreator/2.1/en/introduction/whats-new/

+ UPDATE: Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl

+ HPSBST03195 rev.1 - HP 3PAR Service Processor (SP) running OpenSSL and Bash, Remote Code Execution, Unauthorized Access, Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04595094&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169

+ UPDATE: Oracle Solaris Third Party Bulletin - January 2015
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

+ JVNDB-2015-000048 秀丸エディタにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000048.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0903

+ Google Chrome Bugs Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1032012
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1233
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1234

+ Samba / OpenLDAP Jitterbug Cross Site Scripting
http://cxsecurity.com/issue/WLB-2015040015

+ SA63809 McAfee Agent Remote Log Viewer Clickjacking Vulnerability
http://secunia.com/advisories/63809/

+ SA63801 McAfee Data Loss Prevention Two Vulnerabilities
http://secunia.com/advisories/63801/

+ SA63814 Google Chrome Multiple Vulnerabilities
http://secunia.com/advisories/63814/

+ SA63796 McAfee ePolicy Orchestrator Oracle Java Two Vulnerabilities
http://secunia.com/advisories/63796/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6593
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0410

+ SA63804 McAfee Firewall Enterprise Control Center NTP and OpenSSL Multiple Vulnerabilities
http://secunia.com/advisories/63804/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3569
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3571
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3572
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8275
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0204
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0205
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0206

+ SA63803 McAfee Firewall Enterprise FreeBSD IGMP Packets Handling Denial of Service Vulnerability
http://secunia.com/advisories/63803/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1414

+ SA63791 McAfee Multiple Products OpenSSL Multiple Vulnerabilities
http://secunia.com/advisories/63791/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0204
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0286
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0287
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0288
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0289
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0292
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0293

青天井のセキュリティ対策、どこまでするか
PART5 セキュリティ要件の決め方
http://itpro.nikkeibp.co.jp/atcl/column/15/032600052/032600005/?ST=security

「乗っ取られたら命が危ない」、IoTに潜むセキュリティリスク
http://itpro.nikkeibp.co.jp/atcl/watcher/14/334361/033000231/?ST=security

UPDATE: JVNVU#93982119 ISC BIND 9 にサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/vu/JVNVU93982119/

JVN#58784309 秀丸エディタにおけるバッファオーバーフローの脆弱性
http://jvn.jp/jp/JVN58784309/

VU#924124 X-Cart contains multiple vulnerabilities
http://www.kb.cert.org/vuls/id/924124

REMOTE: Webgate WESP SDK 1.2 ChangePassword Stack Overflow
http://www.exploit-db.com/exploits/36602/

REMOTE: WebGate eDVR Manager 2.6.4 AudioOnlySiteChannel Stack Buffer Overflow
http://www.exploit-db.com/exploits/36603/

REMOTE: WebGate WinRDS 2.0.8 PlaySiteAllChannel Stack Buffer Overflow
http://www.exploit-db.com/exploits/36604/

REMOTE: WebGate eDVR Manager 2.6.4 SiteChannel Property Stack Buffer Overflow
http://www.exploit-db.com/exploits/36606/

REMOTE: WebGate eDVR Manager 2.6.4 Connect Method Stack Buffer Overflow
http://www.exploit-db.com/exploits/36607/

0 件のコメント:

コメントを投稿