2016年7月7日木曜日

7日 木曜日、先負












+ Cisco AMP Threat Grid Unauthorized Clean IP Access Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-tg
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1443

+ Cisco Prime Infrastructure Administrative Web Interface HTML Injection Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-pi
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1442

+ UPDATE: Cisco Products IPv6 Neighbor Discovery Crafted Packet Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160525-ipv6

+ Cisco Video Communication Server and Expressway Trusted Certificate Authentication Bypass Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-vcs
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1444

+ JVNTA#99096686 Symantec および Norton 製品に複数の脆弱性
http://jvn.jp/ta/JVNTA99096686/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2207
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2208
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2209
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2210
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2211
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3644
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3645
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3646

+ JVNVU#97485903 Apache HTTPD の HTTP/2 通信における X.509 クライアント証明書の認証処理の問題
http://jvn.jp/vu/JVNVU97485903/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4979

+ JVNVU#95848898 Acer Portal app for Android における SSL サーバ証明書の検証不備の脆弱性
http://jvn.jp/vu/JVNVU95848898/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5648

+ Linux 4.6 Double-Fetch Race Condition / Buffer Overflow
https://cxsecurity.com/issue/WLB-2016070029

+ Linux 4.6 auditsc.c Double-Fetch
https://cxsecurity.com/issue/WLB-2016070028
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6136

+ Apache 2.4.20 X509 Authentication Bypass
https://cxsecurity.com/issue/WLB-2016070024

UPDATE: JVN#89379547 Apache Commons FileUpload におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN89379547/

「クラウドでも使い慣れた環境を」、日本オラクル社長兼CEO杉原氏
http://itpro.nikkeibp.co.jp/atcl/news/16/070602005/?ST=security

イスラエル政府、テロ行為の責任の一端はFacebookにあると強く非難
http://itpro.nikkeibp.co.jp/atcl/news/16/070501979/?ST=security

ラベル: ,

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)