資安新聞及事件週報 2016/11/21 ~ 2016/11/25

資安新聞及事件週報  2016/11/21 ~ 2016/11/25

**1.重大弱點漏洞：**
  Wireshark DTN解析器拒絕服務漏洞(CVE-2016-9375)
  https://www.wireshark.org/security/wnpa-sec-2016-62.html


  Cisco AsyncOS遠程安全限制繞過漏洞(CVE-2016-6458)
  https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-esa


  Norton 及 Symantec 企業版產品遠端執行程式碼漏洞 CVE-2016-5311
  https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20161117_00


  VMware 產品遠端執行程式碼漏洞 CVE-2016-7461
  https://www.us-cert.gov/ncas/current-activity/2016/11/14/VMWare-Releases-Security-Updates


  思科產品多個漏洞
  https://www.auscert.org.au/render.html?it=41102
  https://www.auscert.org.au/render.html?it=41118

資安新聞及事件週報 2016/11/14 ~ 2016/11/18

資安新聞及事件週報  2016/11/14 ~ 2016/11/18

**1.重大弱點漏洞：**
  Debian Security Update for tar (DSA 3702-1)
  http://www.0daybank.org/?p=3234


  思科 ASA 遠端執行程式碼漏洞
  http://securitytracker.com/id/1037306


  CA發佈Unified Infrastructure Management安全更新，該漏洞會導致目錄遍歷
  https://ics-cert.us-cert.gov/advisories/ICSA-16-315-01


  OpenSSL發佈安全更新，部分漏洞可能導致阻斷服務攻擊
  https://www.us-cert.gov/ncas/current-activity/2016/11/10/OpenSSL-Releases-Security-Update


  CVE-2016-6313Red Hat Update for libgcrypt (RHSA-2016:2674)
  http://www.0daybank.org/?p=3220


  Novell Open Enterprise Server安全漏洞(CVE-2016-5763)
  http://download.novell.com/Download?buildid=dfqmrymc0Rg~

資安新聞及事件週報 2016/11/7 ~ 2016/11/11

資安新聞及事件週報  2016/11/7 ~ 2016/11/11

**1.重大弱點漏洞：**
  SAP NetWeaver Application Server Remote User Account Disclosure Vulnerability
  http://www.0daybank.org/?p=2965


  Red Hat Update for kernel (RHSA-2016:2124) (Dirty Cow)
  http://www.0daybank.org/?p=2957


  Rowhammer漏洞：PC遭殃後，Android設備也難逃魔掌
  http://www.searchsecurity.com.cn/showcontent_94002.htm


  ISC發佈BIND安全更新，該漏洞會導致阻斷服務攻擊
  https://kb.isc.org/article/AA-01434/0


  Cisco Email Security Appliance CVE-2016-1481
  http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1481


  Oracle JDK、Weblogic Server CVE-2016-5556
  http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5556

資安新聞及事件週報 2016/10/31 ~ 2016/11/4

資安新聞及事件週報  2016/10/31 ~ 2016/11/4

**1.重大弱點漏洞：**
  CVE-2015-0665 Cisco AnyConnect Secure Mobility Client Multiple Security Vulnerabilities
  http://www.0daybank.org/?p=2816


  ISC BIND 阻斷服務漏洞
  http://securitytracker.com/id/1037156


  Palo Alto PAN-OS 多個漏洞
  http://securitytracker.com/id/1037152
  http://securitytracker.com/id/1037153


  Oracle WebLogic Commons DiskFileItem Deserialization of Untrusted Data 漏洞
  https://www.seebug.org/vuldb/ssvid-92515

資安新聞及事件週報 2016/10/24 ~ 2016/10/28

資安新聞及事件週報  2016/10/24 ~ 2016/10/28

**1.重大弱點漏洞：**
  臟牛漏洞Dirty COW CVE-2016-5195 2.6.22 < 3.9 (x86/x64)
  http://www.bkjia.com/Linuxjc/1167392.html


  Adobe搶修已遭攻擊的Flash漏洞
  http://www.ithome.com.tw/news/109272


  Apache Tomcat 多個漏洞
  https://www.auscert.org.au/render.html?it=40038


  Android Rowhammer 攻擊漏洞(Drammer)
  https://www.seebug.org/vuldb/ssvid-92489


  Palo Alto PAN-OS JavaScript 執行和輸入驗證漏洞
  http://securityadvisories.paloaltonetworks.com/Home/Detail/64
  http://securityadvisories.paloaltonetworks.com/Home/Detail/62

資安新聞及事件週報 2016/10/17 ~ 2016/10/21

資安新聞及事件週報  2016/10/17 ~ 2016/10/21

**1.重大弱點漏洞：**
  phpMyAdmin 跨站腳本漏洞 CVE-2016-6607
  https://www.phpmyadmin.net/security/PMASA-2016-30/


  Juniper Junos Space 安全漏洞 CVE-2016-4927
  https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10760&cat=SIRT_1&actp=LIST


  甲骨文大舉修補253個安全漏洞，含15個重大漏洞
  http://www.ithome.com.tw/news/109162


  VMware Horizon View 存在安全性弱點
  http://www.vmware.com/security/advisories/VMSA-2016-0015.html

資安新聞及事件週報 2016/10/10 ~ 2016/10/14

**1.重大弱點漏洞：**
  Palo Alto PAN-OS 敏感資訊洩露漏洞
  http://securityadvisories.paloaltonetworks.com/


  Apache Tomcat 緩衝區滿溢漏洞
  http://tomcat.apache.org/security-jk.html#Fixed_in_Apache_Tomcat_JK_Connector_1.2.42


  F5 BIG-IP 漏洞 CVE-2016-5700
  https://support.f5.com/kb/en-us/solutions/public/k/35/sol35520031.html


  Winhex Editor DLL劫持漏洞
  https://cxsecurity.com/issue/WLB-2016020001


  VMware Horizon View 漏洞
  http://securitytracker.com/id/1036972