Microsoft 製品における複数の脆弱性に対するアップデート
http://jvn.jp/tr/TRTA08-344A
JVNRSS based Status Tracking Notes: Microsoft から緊急 6件を含む各製品向けセキュリティ更新プログラムが公開されました。
JVNRSS Feasibility Study Team
jvn@jvn.jp
TRTA08-344A
2008-12-28T16:33+09:00
2008-12-15T01:59+09:00
2008-12-28T16:33+09:00
-
マイクロソフト社のセキュリティ修正プログラムについて (MS08-070,071,072,073,074,075,076,077)(12/10)更新
http://www.cyberpolice.go.jp/important/2008/20081213_091414.html
@police
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-13T09:14+09:00
2008-12-13T09:14+09:00
2008-12-13T09:14+09:00
-
MS Visual Basic ActiveX Controls mscomct2.ocx Buffer Overflow PoC
http://www.securityfocus.com/bid/32613
Windows のコモン AVI 解析のオーバーフローの脆弱性 (CVE-2008-4255, MS08-070)
#Cid: 32613.pl
Bugtraq
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4255
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
2008-12-12
2008-12-12
2008-12-12
-
Microsoft Windows の search-ms プロトコルによるコード実行
http://www.isskk.co.jp/support/techinfo/general/ms_sch_pcode_exe_316.html
IBM インターネット セキュリティ システムズ
http://xforce.iss.net/xforce/xfdb/46866
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4269
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
2008-12-10T06:02+00:00
2008-12-10T06:02+00:00
2008-12-10T06:02+00:00
-
Microsoft Internet Explorer での埋め込みオブジェクトによるコード実行
http://www.isskk.co.jp/support/techinfo/general/ms_ie_ocode_exe_315.html
IBM インターネット セキュリティ システムズ
http://xforce.iss.net/xforce/xfdb/46860
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4261
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
2008-12-10T05:24+00:00
2008-12-10T05:24+00:00
2008-12-10T05:24+00:00
-
Microsoft Windows GDI の WMF イメージ ファイルによる整数オーバーフロー
http://www.isskk.co.jp/support/techinfo/general/ms_gdi_wmf_314.html
IBM インターネット セキュリティ システムズ
http://xforce.iss.net/xforce/xfdb/46842
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2249
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
2008-12-10T05:17+00:00
2008-12-10T05:17+00:00
2008-12-10T05:17+00:00
-
Microsoft Internet Explorer の HTML オブジェクトによる初期化されていないメモリーでのコード実行
http://www.isskk.co.jp/support/techinfo/general/ms_ie_mcode_exe_313.html
IBM インターネット セキュリティ システムズ
http://xforce.iss.net/xforce/xfdb/46858
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4259
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
2008-12-10T04:36+00:00
2008-12-10T04:36+00:00
2008-12-10T04:36+00:00
-
2008年12月 Microsoft セキュリティ情報 (緊急 6件含) に関する注意喚起
http://www.jpcert.or.jp/at/2008/at080022.txt
JPCERT/CC
JPCERT-AT-2008-0022
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-10T02:41+00:00
2008-12-10T02:41+00:00
2008-12-10T02:41+00:00
-
マイクロソフト社のセキュリティ修正プログラムについて (MS08-070,071,072,073,074,075,076,077)(12/10)
http://www.cyberpolice.go.jp/important/2008/20081210_110605.html
@police
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-10T11:06+09:00
2008-12-10T11:06+09:00
2008-12-10T11:06+09:00
-
Microsoft Updates for Multiple Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
US-CERT メーリングリスト経由で Technical Cyber Security Alert 受信
US-CERT
TA08-344A
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-09T18:35-05:00
2008-12-09T18:35-05:00
2008-12-09T18:35-05:00
-
IE Webdav Request Parsing Heap Corruption Vulnerability
http://www.insomniasec.com/advisories/ISVA-081209.1.htm
HTML オブジェクトのメモリの破損の脆弱性 (MS08-073, CVE-2008-4259)
Insomnia Security
ISVA-081209.1
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4259
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
2008-12-10T12:32+13:00
2008-12-10T12:32+13:00
2008-12-10T12:32+13:00
-
セキュリティ情報 2008 年 12 月のセキュリティ情報
http://www.microsoft.com/japan/technet/security/bulletin/ms08-dec.mspx&jvntrev=2
メーリングリスト経由で受信
マイクロソフト
MS08-DEC
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-09T13:31-08:00
2008-12-09T13:31-08:00
2008-12-09T13:31-08:00
-
December Black Tuesday Overview
http://isc.sans.org/diary.html?storyid=5449
SANS Internet Storm Center
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-09T20:36+00:00
2008-12-09T20:36+00:00
2008-12-09T20:36+00:00
-
Microsoft Releases December Security Bulletin
http://www.us-cert.gov/current/archive/2008/12/09/archive.html#microsoft_releases_december_security_bulletin
US-CERT Current Activity として月例セキュリティ情報を報告
US-CERT
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-09T14:13-04:00
2008-12-09T14:13-04:00
2008-12-09T14:13-04:00
-
セキュリティ情報の事前通知 - 2008 年 12 月
http://www.microsoft.com/japan/technet/security/bulletin/ms08-dec.mspx&jvntrev=1
メーリングリスト経由で受信
マイクロソフト
MS08-DEC
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-075.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-076.mspx
http://www.microsoft.com/japan/technet/security/bulletin/ms08-077.mspx
2008-12-04T17:20-08:00
2008-12-04T17:20-08:00
2008-12-04T17:20-08:00
-
Microsoft Animation ActiveX Control Malformed AVI Parsing Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-083
Windows のコモン AVI 解析のオーバーフローの脆弱性 (MS08-070, CVE-2008-4255)
脆弱性をベンダに報告
Zero Day Initiative (ZDI)
ZDI-08-083
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4255
http://www.microsoft.com/japan/technet/security/bulletin/ms08-070.mspx
2008-09-16
2008-09-16
2008-09-16
-
Microsoft Excel NAME Record Array Indexing Vulnerability
http://secunia.com/secunia_research/2008-36/
Excel のグローバル配列メモリ破損の脆弱性 (CVE-2008-4266, MS08-074)
脆弱性をベンダに報告
Secunia Research
2008-36
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4266
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
2008-09-02
2008-09-02
2008-09-02
-
Microsoft Internet Explorer HTML Tag Long File Name Extension Stack Buffer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=761
HTML レンダリングのメモリの破損の脆弱性 (MS08-073, CVE-2008-4261)
脆弱性をベンダに報告
iDefense
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4261
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
2008-08-26
2008-08-26
2008-08-26
-
Microsoft Office Word Document Table Property Stack Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-086
Word のメモリの破損の脆弱性 (MS08-072, CVE-2008-4837)
脆弱性をベンダに報告
Zero Day Initiative (ZDI)
ZDI-08-086
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4837
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
2008-08-19
2008-08-19
2008-08-19
-
Microsoft Excel Malformed Object Memory Corruption Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=763
ファイル形式の解析の脆弱性 (MS08-074, CVE-2008-4265)
脆弱性をベンダに報告
iDefense
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4265
http://www.microsoft.com/japan/technet/security/bulletin/ms08-074.mspx
2008-07-21
2008-07-21
2008-07-21
-
Microsoft Office RTF Drawing Object Heap Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-085
Word の RTF のオブジェクトの解析の脆弱性 (MS08-072, CVE-2008-4028)
脆弱性をベンダに報告
Zero Day Initiative (ZDI)
ZDI-08-085
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4028
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
2008-06-25
2008-06-25
2008-06-25
-
Microsoft Windows Graphics Device Interface Integer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=762
GDI の整数オーバーフローの脆弱性 (MS08-071, CVE-2008-2249)
脆弱性をベンダに報告
iDefense
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2249
http://www.microsoft.com/japan/technet/security/bulletin/ms08-071.mspx
2008-05-21
2008-05-21
2008-05-21
-
Microsoft Office RTF Consecutive Drawing Object Parsing Heap Corruption Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-084
Word の RTF のオブジェクトの解析の脆弱性 (MS08-072, CVE-2008-4027)
脆弱性をベンダに報告
Zero Day Initiative (ZDI)
ZDI-08-084
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4027
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
2008-05-19
2008-05-19
2008-05-19
-
Microsoft Internet Explorer Webdav Request Parsing Heap Corruption Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-08-087
HTML オブジェクトのメモリの破損の脆弱性 (MS08-073, CVE-2008-4259)
脆弱性をベンダに報告
Zero Day Initiative (ZDI)
ZDI-08-087
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4259
http://www.microsoft.com/japan/technet/security/bulletin/ms08-073.mspx
2008-05-19
2008-05-19
2008-05-19
-
Microsoft Word RTF Polyline/Polygon Integer Overflow
http://secunia.com/secunia_research/2008-21/
Word の RTF のオブジェクトの解析の脆弱性 (CVE-2008-4025, MS08-072)
脆弱性をベンダに報告
Secunia Research
2008-21
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4025
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
2008-05-16
2008-05-16
2008-05-16
-
Microsoft Word Malformed FIB Arbitrary Free Vulnerability
http://www.coresecurity.com/content/word-arbitrary-free
Word のメモリの破損の脆弱性 (MS08-072, CVE-2008-4024)
脆弱性をベンダに報告
Core Security Technologies
CORE-2008-0228
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4024
http://www.microsoft.com/japan/technet/security/bulletin/ms08-072.mspx
2008-03-13
2008-03-13
2008-03-13