Apple 製品における複数の脆弱性
http://jvn.jp/tr/TRTA08-043B
JVNRSS based Status Tracking Notes: Apple から Mac OS X および Mac OS X Server の複数の脆弱性に対応したセキュリティアップデート 2008-001 がリリースされました。JVNRSS Feasibility Study Teamjvn@jvn.jpTRTA08-043B2008-02-26T09:07+09:002008-02-17T17:01+09:002008-02-26T09:07+09:00Apple Updates for Multiple Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA08-043B.html
US-CERT メーリングリスト経由で Technical Cyber Security Alert 受信
US-CERTTA08-043Bhttp://www.uscert.gov/cas/techalerts/TA08-043B.html2008-02-12T14:29-05:002008-02-12T14:29-05:002008-02-12T14:29-05:00Apple Releases Security Updates for Multiple Vulnerabilities
http://www.us-cert.gov/current/archive/2008/02/12/archive.html#apple_releases_security_update_2008
US-CERT Current Activity としてセキュリティアップデートを報告
US-CERThttp://www.uscert.gov/cas/techalerts/TA08-043B.html2008-02-12T09:40-04:002008-02-12T09:40-04:002008-02-12T09:40-04:00Apple security update 2008-001 and 10.5.2 upgrade
http://isc.sans.org/diary.html?storyid=3974
SANS Internet Storm Centerhttp://www.us-cert.gov/cas/techalerts/TA08-043B.html2008-02-12T01:22+00:002008-02-12T01:22+00:002008-02-12T01:22+00:00Mac OS X 10.5.2 のセキュリティコンテンツおよび Security Update 2008-001 について
http://docs.info.apple.com/article.html?artnum=307430-ja
アップルArticle ID: 307430http://www.us-cert.gov/cas/techalerts/TA08-043B.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0355http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0035http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0038http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0039http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0040http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0041http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6015http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0042http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4568http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-00372008-02-11T21:39+00:002008-02-11T21:39+00:002008-02-11T21:39+00:00Multiple Vendor X Font Server Multiple Vulnerabilities
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602
X Font Server swap_char2b 処理の脆弱性 (CVE-2007-4990)
X Font Server build_range 処理における整数オーバーフローの脆弱性 (CVE-2007-4568)
脆弱性をベンダに報告
iDefensehttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4990http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-45682007-09-052007-09-052007-09-05Mac OS X 10.4.8 SLP Daemon Service Registration Buffer Overflow PoC
http://www.securityfocus.com/bid/22101
検証コードに関する報告 (Apple Minimal SLP のバッファオーバーフローの脆弱性 - CVE-2007-0355)
#Cid: MOAB-17-01-2007.rb
Bugtraqhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-03552007-01-182007-01-182007-01-18P2qzKsc13kuEjowZUgmzKds+Z3Q=hrTpzkNs03l6BPuhcUiHEVeQd8Q=ZC9gU6xj6B3hEcOKbGF1Lzk2+Gs6Qd3uojik00HU/D5IDklkJF82HAmXLVvpoUak1tSod+E+z32+1i7oe8+NoPX2fim32oChDlT03O3ZT1+lrc0d+cPum4OZc2JGVRviQB17Ot4kTEcnfqO7qLBjyrMpGwqvSI5uLiIv0U0pi04=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