吉祥寺北口システムが気になった記事をクリップしています。タイトルから元記事にリンクしています。タグは記事タイトルを形態素分析しています。たまにコメントをつけています。

allows

• VU#164934 – PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement
  • 164934(1)
  • allows(25)
  • and(3289)
  • can(241)
  • Compromise(17)
  • credentials(18)
  • deleted(7)
  • Deploy(28)
  • Device(113)
  • Facilitate(2)
  • lateral(1)
  • movement(7)
  • of(3341)
  • PDQ(3)
  • Reuse(7)
  • That(197)
  • VU(109)
• GitHub – aws/aws-mysql-odbc: The Amazon Web Services (AWS) ODBC Driver for MySQL allows an application to take advantage of the features of clustered MySQL databases. It is based on and can be used as a drop-in compatible for the MySQL Connector/ODBC driver, and is compatible with all MySQL deployments.
  • Advantage(7)
  • All(263)
  • allows(25)
  • Amazon(8250)
  • An(393)
  • and(3289)
  • Application(184)
  • As(303)
  • AWS(3959)
  • Based(69)
  • BE(151)
  • can(241)
  • clustered(2)
  • Compatible(7)
  • connector(41)
  • Databases(16)
  • Deployments(14)
  • DRIVER(43)
  • Drop(13)
  • Features(150)
  • for(5179)
  • GitHub(873)
  • in(2447)
  • is(1010)
  • IT(1202)
  • MySQL(182)
  • ODBC(9)
  • of(3341)
  • on(1868)
  • Services(6355)
  • Take(37)
  • the(4365)
  • to(3295)
  • Used(59)
  • Web(9079)
  • with(1607)
• CodeCatalyst allows customers to use Amazon Q Developer to choose a blueprint – AWS
  • allows(25)
  • Amazon(8250)
  • AWS(3959)
  • blueprint(2)
  • Choose(9)
  • CodeCatalyst(14)
  • Customers(106)
  • Developer(363)
  • to(3295)
  • Use(177)
• 2023-08-29 Out-of-Cycle Security Bulletin: Junos OS and Junos OS Evolved: A crafted BGP UPDATE message allows a remote attacker to de-peer (reset) BGP sessions (CVE-2023-4481)
  • 2023(1931)
  • 29(312)
  • 4481(1)
  • allows(25)
  • and(3289)
  • attacker(2)
  • BGP(27)
  • Bulletin(253)
  • Crafted(5)
  • CVE-(1427)
  • CYCLE(19)
  • de(65)
  • EVOLVED(6)
  • Junos(10)
  • Message(59)
  • of(3341)
  • OS(914)
  • out(146)
  • Peer(7)
  • Remote(203)
  • reset(10)
  • Security(5710)
  • Sessions(4)
  • to(3295)
  • Update(1095)
• Google AI Allows You to ‘Fly’ Into a Landscape Photograph | PetaPixel
  • ai(5172)
  • allows(25)
  • fly(10)
  • Google(5828)
  • into(143)
  • landscape(19)
  • PetaPixel(3)
  • photograph(2)
  • to(3295)
  • You(393)
• Wikimedia Enterprise announces Google and Internet Archive as its first customers; allows new customers to self sign-up for free trials – Wikimedia Foundation
  • allows(25)
  • and(3289)
  • Announces(243)
  • Archive(160)
  • As(303)
  • Customers(106)
  • Enterprise(442)
  • first(345)
  • for(5179)
  • Foundation(390)
  • Free(274)
  • Google(5828)
  • Internet(694)
  • ITS(231)
  • new(1446)
  • Self(24)
  • Sign-Up(2)
  • to(3295)
  • Trials(2)
  • Wikimedia(20)
• ACM: Apple changes unfair conditions, allows alternative payments methods in dating apps | ACM.nl
  • ACM(26)
  • allows(25)
  • Alternative(17)
  • apple(3294)
  • Apps(288)
  • Changes(87)
  • Conditions(18)
  • Dating(4)
  • in(2447)
  • methods(3)
  • nl(6)
  • Payments(27)
  • unfair(1)
• DuckDuckGo browser allows Microsoft trackers due to search agreement
  • Agreement(52)
  • allows(25)
  • browser(241)
  • DuckDuckGo(35)
  • due(48)
  • Microsoft(4459)
  • Search(289)
  • to(3295)
  • trackers(4)
• GitHub – kagancapar/CVE-2022-29072: 7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.
  • 2022(1916)
  • 21.07(1)
  • 29072(2)
  • allows(25)
  • and(3289)
  • Area(35)
  • Command(76)
  • contents(23)
  • CVE-(1427)
  • dragged(1)
  • escalation(31)
  • execution(116)
  • Extension(47)
  • File(134)
  • GitHub(873)
  • Help(182)
  • is(1010)
  • kagancapar(1)
  • on(1868)
  • privilege(44)
  • the(4365)
  • through(95)
  • to(3295)
  • when(84)
  • Windows(3425)
  • with(1607)
  • zip(53)
• Exploitable Critical RCE Vulnerability Allows Regular Users to Fully Compromise Active Directory – PrintNightmare CVE-2021-1675 – TRUESEC Blog
  • 1675(1)
  • 2021(2113)
  • Active(117)
  • allows(25)
  • Blog(6451)
  • Compromise(17)
  • Critical(213)
  • CVE-(1427)
  • Directory(82)
  • Exploitable(4)
  • FULLY(28)
  • PrintNightmare(5)
  • RCE(30)
  • Regular(2)
  • to(3295)
  • TRUESEC(1)
  • Users(195)
  • Vulnerability(515)
• Microsoft Teams: Vulnerability in Microsoft Power Apps Service Allows Theft of Emails, Files and More – Blog | Tenable?
  • allows(25)
  • and(3289)
  • Apps(288)
  • Blog(6451)
  • emails(16)
  • files(67)
  • in(2447)
  • Microsoft(4459)
  • more(386)
  • of(3341)
  • power(231)
  • Service(812)
  • Teams(196)
  • Tenable(16)
  • theft(13)
  • Vulnerability(515)
• The characteristic response of domestic cats to plant iridoids allows them to gain chemical defense against mosquitoes | Science Advances
  • Advances(31)
  • Against(130)
  • allows(25)
  • Cats(15)
  • characteristic(1)
  • Chemical(10)
  • Defense(44)
  • Domestic(10)
  • Gain(7)
  • iridoids(1)
  • mosquitoes(5)
  • of(3341)
  • PLANT(19)
  • response(312)
  • Science(186)
  • the(4365)
  • them(23)
  • to(3295)
• G Suite Updates Blog: Gmail for iOS now allows you to add attachments from the Files app
  • Add(17)
  • allows(25)
  • App(782)
  • Attachments(10)
  • Blog(6451)
  • files(67)
  • for(5179)
  • from(593)
  • Gmail(259)
  • iOS(1242)
  • now(622)
  • Suite(218)
  • the(4365)
  • to(3295)
  • Updates(389)
  • You(393)
• Moodle.org: MSA-18-0012: Portfolio script allows instantiation of class chosen by user
  • 0012(5)
  • 18(403)
  • allows(25)
  • by(1069)
  • chosen(3)
  • Class(40)
  • instantiation(1)
  • Moodle(29)
  • MSA-(21)
  • of(3341)
  • org(402)
  • Portfolio(15)
  • Script(12)
  • user(133)
• Moodle.org: MSA-18-0007: Calculated question type allows remote code execution by Question authors
  • 0007(2)
  • 18(403)
  • allows(25)
  • Authors(2)
  • by(1069)
  • Calculated(4)
  • Code(400)
  • execution(116)
  • Moodle(29)
  • MSA-(21)
  • org(402)
  • question(5)
  • Remote(203)
  • Type(149)
• GitHub – OpenAPITools/openapi-generator: OpenAPI Generator allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec
  • allows(25)
  • An(393)
  • and(3289)
  • API(1104)
  • automatically(11)
  • Client(133)
  • configuration(20)
  • Documentation(57)
  • Generation(105)
  • Generator(32)
  • GitHub(873)
  • Given(3)
  • libraries(20)
  • of(3341)
  • OpenAPI(5)
  • openapi-generator(1)
  • OpenAPITools(1)
  • SDK(222)
  • Server(698)
  • SPEC(9)
  • stubs(2)
• GitHub – edwardz246003/IIS_exploit: Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with “If:
  • 2003(6)
  • 2016(235)
  • 246003(1)
  • 6.0(19)
  • allows(25)
  • Arbitrary(26)
  • As(303)
  • Attackers(12)
  • August(30)
  • beginning(11)
  • Buffer(37)
  • Code(400)
  • edwardz(1)
  • Execute(8)
  • Exploit(79)
  • Exploited(23)
  • Function(20)
  • GitHub(873)
  • Header(13)
  • HTTP(335)
  • If(39)
  • IIS(13)
  • in(2447)
  • INFORMATION(226)
  • Internet(694)
  • July(51)
  • Long(51)
  • Microsoft(4459)
  • or(98)
  • overflow(107)
  • PROPFIND(1)
  • Remote(203)
  • request(43)
  • ScStoragePathFromUrl(1)
  • Server(698)
  • Service(812)
  • Services(6355)
  • the(4365)
  • to(3295)
  • via(72)
  • WebDAV(2)
  • Wild(23)
  • Windows(3425)
  • with(1607)
• Security vuln allows Android app tampering through single URL click | ZDNet
  • allows(25)
  • Android(2148)
  • App(782)
  • Click(31)
  • Security(5710)
  • Single(37)
  • tampering(2)
  • through(95)
  • URL(188)
  • vuln(6)
  • ZDNet(56)
• Trend Micro Discovers Apache Cordova Vulnerability that Allows One-Click Modification of Android Apps
  • allows(25)
  • Android(2148)
  • apache(513)
  • Apps(288)
  • Cordova(17)
  • discovers(16)
  • Micro(599)
  • Modification(4)
  • of(3341)
  • One-Click(6)
  • That(197)
  • Trend(606)
  • Vulnerability(515)
• Facebook Now Allows You To Report False News
  • allows(25)
  • Facebook(1703)
  • False(19)
  • news(5822)
  • now(622)
  • Report(334)
  • to(3295)
  • You(393)
• Samsung ‘Find My Mobile’ Flaw Allows Hacker to Remotely Lock Your Device
  • allows(25)
  • Device(113)
  • FIND(56)
  • flaw(22)
  • Hacker(15)
  • Lock(14)
  • Mobile(558)
  • My(135)
  • Remotely(4)
  • Samsung(219)
  • to(3295)
  • Your(539)
• OpenSSL bug allows RSA 1024 key factorization in 20 minutes : crypto
  • allows(25)
  • Bug(102)
  • crypto(52)
  • factorization(1)
  • in(2447)
  • Key(83)
  • Minutes(19)
  • openssl(214)
  • RSA(50)
• Major security hole allows Apple passwords to be reset with only email address, date of birth (update) | The Verge
  • address(42)
  • allows(25)
  • apple(3294)
  • BE(151)
  • birth(6)
  • date(13)
  • Email(121)
  • hole(18)
  • Major(50)
  • of(3341)
  • only(37)
  • passwords(43)
  • reset(10)
  • Security(5710)
  • the(4365)
  • to(3295)
  • Update(1095)
  • Verge(23)
  • with(1607)
• Security hole allows anyone to hijack your Skype account using only your email address (updated) – The Next Web
  • Account(81)
  • address(42)
  • allows(25)
  • anyone(13)
  • Email(121)
  • hijack(4)
  • hole(18)
  • Next(306)
  • only(37)
  • Security(5710)
  • Skype(159)
  • the(4365)
  • to(3295)
  • updated(44)
  • using(213)
  • Web(9079)
  • Your(539)
• New Skype vulnerability allows hijacking of your account – Securelist
  • Account(81)
  • allows(25)
  • hijacking(7)
  • new(1446)
  • of(3341)
  • Securelist(27)
  • Skype(159)
  • Vulnerability(515)
  • Your(539)