VMware Workstation にセキュリティホールがありんす (゚Д゚)ウゼェェェ
Updates to VMware resolve critical security issues (SANS)
影響があるのは VMware Warkstation, Player, ACE, Fusion だそうです。Workstation を使っている人は気を付けてください。Server は not affected だそうです。 ヨカターヨ・゚・(ノД`)・゚・
年金・医療・介護に関わる情報を住基カードに載せる(かも) (Slashdot)
2010 年の冬は IPv4 にとっての冬となるのか (Slashdot)
オープンソース非採用の理由、英国の場合は「顧客からの要請」と「ライセンス上の制約」 (Computerworld.jp)
シーゲイト、企業向け SSD ストレージと 2TB の HDD を来年投入へ (Computerworld.jp)
インテルとマイクロン、SSD の大容量・低価格化に向けフラッシュ・チップを共同開発 (Computerworld.jp)
新時代のITキャリア「CIO(Chief Information Officer)」 (Computerworld.jp)
疲れ目:パソコン作業で肩こり、視力低下など眼精疲労 対策は…(上) (毎日jp)
疲れ目:パソコン作業で肩こり、視力低下など眼精疲労 対策は…(下) (毎日jp)
Exploit Code
- SecurityGateway 1.0.1 (username) Remote Buffer Overflow PoC
- I-Pos Internet Pay Online Store <= 1.3 Beta SQL Injection Vulnerability
- meBiblio 0.4.7 (SQL/Upload/XSS) Multiple Remote Vulnerabilities
- DesktopOnNet 3 Beta Multiple Remote File Inclusion Vulnerabilities
- Joomla Component com_mycontent 1.1.13 Blind SQL Injection Exploit
- ComicShout 2.8 (news.php news_id) SQL Injection Vulnerability
- Samba (client) receive_smb_raw() Buffer Overflow Vulnerability PoC
- Social Site Generator v2 Multiple Remote File Disclosure Vulnerabilities
- Joomla Component com_biblestudy 1.5.0 (id) SQL Injection Exploit
- freeSSHd 1.2.1 Remote Stack Overflow PoC (auth)
- Joomla Component prayercenter <= 1.4.9 (id) SQL Injection Vulnerability
- Social Site Generator (path) Remote File Inclusion Vulnerability
- EasyWay CMS (index.php mid) Remote SQL Injection Exploit
- BP Blog 6.0 (id) Remote Blind SQL Injection Vulnerability
- PassWiki <= 0.9.16 RC3 (site_id) Local File Inclusion Vulnerability
- PHP Visit Counter <= 0.4 (datespan) SQL Injection Vulnerability
- AzureSites CMS Multiple Remote Vulnerabilities
- Social Site Generator (sgc_id) Remote SQL Injection Vulnerability
- CMSimple 3.1 Local File Inclusion / Arbitrary File Upload Exploit
- PsychoStats <= 2.3.3 Multiple Remote SQL Injection Vulnerabilities
- HiveMaker Professional <= 1.0.2 (cid) SQL Injection Vulnerability
- PHP Booking Calendar 10 d (fckeditor) Arbitrary File Upload Exploit
- PHP Booking Calendar 10 d Remote SQL Injection Exploit
- Now SMS/MMS Gateway 5.5 Remote Buffer Overflow Exploit
- ASUS DPC Proxy 2.0.0.16/19 Remote Buffer Overflow Exploit
- CMS from Scratch <= 1.1.3 (image.php) Directory Traversal Vulnerability
- Mambo Component mambads <= 1.0 RC1 Beta SQL Injection Vulnerability
- CMS from Scratch <= 1.1.3 (fckeditor) Remote Shell Upload Exploit
- PicoFlat CMS 0.5.9 Local File Inclusion Vulnerabilitty (win)
- AirvaeCommerce 3.0 (pid) Remote SQL Injection Vulnerability
- SyntaxCMS <= 1.3 (fckeditor) Arbitrary File Upload Exploit
- Adobe Acrobat Reader <= 8.1.2 Malformed PDF Remote DOS PoC
- VMware Server Console ActiveX Denial of Service PoC
- FlashBlog (articulo_id) Remote SQL Injection Vulnerability
- Joomla Component Artist (idgalery) SQL Injection Vulnerability
- PHPhotoalbum 0.5 Multiple Remote SQL Injection Vulnerabilities
- CA Internet Security Suite 2008 SaveToFile() File Corruption PoC
- Creative Software AutoUpdate Engine ActiveX Stack Overflow Exploit
- OtomiGen.X 2.2 (lang) Local File Inclusion Vulnerabilities
- PHP 5.2.6 sleep() Local Memory Exhaust Exploit
- CKGold Shopping Cart 2.5 (category_id) SQL Injection Vulnerability
- RevokeBB 1.0 RC11 (search) Remote SQL Injection Vulnerability
- CMS MAXSITE <= 1.10 (category) Remote SQL Injection Vulnerability
- RoomPHPlanning 1.5 Multiple Remote SQL Injection Vulnerabilities
- RoomPHPlanning 1.5 Arbitrary Add Admin User Vulnerability
- Xomol CMS v1 Login Bypass / LFI Vulnerabilities
- plusPHP URL Shortening Software 1.6 Remote File Inclusion Vulnerability
