2016年4月5日火曜日

5日 火曜日、大安

+ UPDATE: Cisco Videoscape Distribution Suite for Internet Streaming TCP Session Handling Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160226-vds-is

+ UPDATE: Cisco Unified Communications Domain Manager Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160328-ucdm

+ SA69837 Squid Two Vulnerabilities
https://secunia.com/advisories/69837/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3947
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3948

+ SA69852 Sharp AQUOS PhotoPlayer HN-PP150 Cross-Site Request Forgery Vulnerability
https://secunia.com/advisories/69852/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1175

+ FreeBSD 10.3-RELEASE released
https://www.freebsd.org/releases/10.3R/relnotes.html

+ JVNDB-2016-000039 AQUOSフォトプレーヤー HN-PP150 におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000039.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1175

+ Squid HTTP Response Processing Bug Lets Remote Users Cause Denial of Service Conditions
http://www.securitytracker.com/id/1035458
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3948

+ Squid Bug in ICMPv6 Pinger Lets Remote Users Deny Service and Local Users Obtain Potentially Sensitive Heap Memory Contents
http://www.securitytracker.com/id/1035457
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3947

+ PHP 5.5.33 Invalid Memory Write
https://cxsecurity.com/issue/WLB-2016040010

+ PHP <= 7.0.4/5.5.33 - SNMP Format String Exploit
https://cxsecurity.com/issue/WLB-2016040017

JVNDB-2016-000037 WisePoint におけるクリックジャッキングの脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000037.html

JVNDB-2016-000038 EVAアニメータ用 ActiveX コントロールにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000038.html

News & Trend
攻めを学ばせ守りに生かす、会津で進むセキュリティ人材育成
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/040300498/?ST=security

0 件のコメント:

コメントを投稿