原站：http://www.kb.cert.org/vuls/

标签：网络安全 安全 security

指数：

“US-CERT Recently Published Vulnerability Notes”的内容更新

累计：239 篇（自 2009-08-02 起）

更新：约2篇/周，最后更新5 天前

US-CERT Recently Published Vulnerability Notes

VU#542123: ISC BIND 9 resolver cache vulnerability

vulnerability note vu#542123isc bind 9 resolver cache vulnerabilityoverviewisc bind 9 resolver contains a vulnerability that could allow a attacker to keep a domain name in the cache even after it has been deleted from registration.i. descriptionaccording to isc:isc has been notified by haixin duan (a professor at tsinghua university in beijing china... (5 天前)

http://inezha.com/w/6nefpu83

US-CERT Recently Published Vulnerability Notes

VU#732115: Project Open cross-site scripting vulnera

vulnerability note vu#732115project open cross-site scripting vulnerabilityoverviewproject open ]po[ version 3.4 and possibly earlier versions suffer from a reflective cross-site scripting (xss) vulnerability in the account-closed.tcl scripti. descriptionthe xss vulnerability (cwe-79) is contained within the message parameter in the account-closed.tcl... (10 天前)

http://inezha.com/w/fu9ds58g

US-CERT Recently Published Vulnerability Notes

VU#410281: Apple Mac OS X CoreText embedded font vul

vulnerability note vu#410281apple mac os x coretext embedded font vulnerabilityoverviewapple mac os x coretext contains a use-after-free vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.i. descriptionapple mac os x coretext is a text layout and font processing engine that is used to handl... (10 天前)

http://inezha.com/w/axx1f58b

US-CERT Recently Published Vulnerability Notes

VU#403593: Apple Mac OS X ATS data-font memory corru

vulnerability note vu#403593apple mac os x ats data-font memory corruption vulnerabilityoverviewapple mac os x ats contains a memory corruption vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.i. descriptionapple mac os x ats (apple type services) fails to properly handle malformed data-f... (10 天前)

http://inezha.com/w/5we2k58z

US-CERT Recently Published Vulnerability Notes

VU#763355: 802.1X password exploit on many HTC Andro

vulnerability note vu#763355802.1x password exploit on many htc android devicesoverviewa user's 802.1x wifi credentials and ssid information may be exposed to any application with basic wifi permissions on certain htc builds of android.i. descriptionany android application on an affected htc build with the android.permission.access_wifi_state permissi... (12 天前)

http://inezha.com/w/4p9t458x

US-CERT Recently Published Vulnerability Notes

VU#470151: Linux Kernel local privilege escalation v

vulnerability note vu#470151linux kernel local privilege escalation via suid /proc/pid/mem writeoverviewlinux kernel >= 2.6.39 incorrectly handles the permissions for /proc/<pid>/mem. a local, authenticated attacker could exploit this vulnerability to escalate to root privileges. exploit code is available in the wild and there have been reports of a... (17 天前)

http://inezha.com/w/ciwgv581

US-CERT Recently Published Vulnerability Notes

VU#738961: Oracle Outside In contains an exploitable

vulnerability note vu#738961oracle outside in contains an exploitable vulnerability in lotus 123 v4 parserovervieworacle outside in contains an exploitable vulnerability in the lotus 123 version 4 file parser, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.i. descriptionoracle outside in is a set of... (26 天前)

http://inezha.com/w/1adip58j

订阅者 ( 2 )

相关订阅源