2015年11月10日火曜日

10日 火曜日、先勝

+ UPDATE: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-ntp

+ Cisco Connected Grid Network Management System Privilege Escalation Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151109-cg-nms
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6362

+ Linux kernel 4.2.6, 4.1.13, 3.14.57, 3.10.93 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.2.6
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.13
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.57
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.93

+ SYM15-011 Security Advisories Relating to Symantec Products - Symantec Endpoint Protection Elevation of Privilege Issues
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20151109_00

+ PowerDNS Authoritative Server Packet Processing Flaw Lets Remote Users Cause the Target Service to Crash
http://www.securitytracker.com/id/1034098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5311

+ Apache Commons Components Deserialization in InvokerTransformer Lets Remote Users Execute Arbitrary Code on the Target System
http://www.securitytracker.com/id/1034097

+ Dell SonicWALL TZ 100 Packet Processing Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1034092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7770

+ Apache OpenOffice Bugs Let Remote Users Obtain Files and Execute Arbitrary Code
http://www.securitytracker.com/id/1034091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4551
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5212
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5213
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5214

チェックしておきたい脆弱性情報<2015.11.10>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/110500084/?ST=security

新会社「PwCサイバーサービス」が発足、サイバー攻撃の回復支援を専門に
http://itpro.nikkeibp.co.jp/atcl/news/15/110903658/?ST=security

8省庁がサポート切れソフトに13億円支出、会計検査院が指摘
http://itpro.nikkeibp.co.jp/atcl/news/15/110903657/?ST=security

「セキュリティ人材不足は世界共通の課題」、シマンテック渉外担当
http://itpro.nikkeibp.co.jp/atcl/news/15/110903655/?ST=security

中国バイドゥのAndroid用SDKに外部操作可能なバックドア、約1億人に影響
http://itpro.nikkeibp.co.jp/atcl/news/15/110903653/?ST=security

JVNVU#94520968 Huawei HG532 シリーズルータにディレクトリトラバーサルの脆弱性
http://jvn.jp/vu/JVNVU94520968/

0 件のコメント:

コメントを投稿