Mailing Lists & Feeds
Current Activity Calendar
| April 12, 2007 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.Storm Worm Affecting Multiple Organizationsadded April 12, 2007US-CERT is aware of a Trojan Worm referred to as "Storm Worm" currently affecting multiple organizations. US-CERT is currently investigating this and will provide additional information as it becomes available. Cisco Releases Security Advisories to Address Multiple Vulnerabilities in Cisco Wireless Productsadded April 12, 2007Cisco has released Security Advisories cisco-sa-20070412-wcs and cisco-sa-20070412-wlc to address multiple vulnerabilities in Cisco Wireless Control System, Wireless LAN Controller, and Lightweight Access Points. The impacts of these vulnerabilities include denial of service, information disclosure, access control list changes, privilege escalation, unauthorized access through fixed authentication credentials, and the ability to gain full administrative access. More information about these vulnerabilities is located in the following:
US-CERT encourages administrators to apply the fixes and workarounds as described in Cisco Security Advisories cisco-sa-20070412-wcs and cisco-sa-20070412-wlc Oracle Issues Pre-Release Announcement for April Critical Patch Updateadded April 11, 2007Oracle has issued a Pre-Release Announcement indicating that their April Critical Patch Update (CPU) will contain 37 new security fixes across all products. The announcement further states that thirteen of the security fixes are for Oracle Database; two for Oracle Enterprise Manager; one for Oracle Workflow Cartridge; one for the Ultra Search component affect code bundled with the Oracle Database; five for Oracle Application Server; eleven for Oracle E-Business Suite; and four for Oracle PeopleSoft Enterprise. The release is scheduled for Tuesday, April 17, 2007. We will provide additional information as it becomes available. Microsoft Releases April Security Bulletinadded April 10, 2007 | updated April 10, 2007Microsoft has released updates to address vulnerabilities in Microsoft Windows and Content Management Server as part of the Microsoft Security Bulletin Summary for April 2007. More information about these vulnerabilities is located in the Vulnerability Notes Database and Technical Cyber Security Alert TA07-100A. US-CERT strongly encourages users to review the bulletins and follow best-practice security policies to determine what updates should be applied. Apple Releases Firmware Update for AirPort Extreme Base Station with 802.11nadded April 10, 2007Apple has released Firmware Update 7.1 to address CVE-2007-1338 and CVE-2007-0734 for the Airport Extreme Base Station with 802.11n. US-CERT encourages users to apply Firmware Update 7.1 as soon as possible. Microsoft Releases Advance Notification for April Security Bulletinsadded April 5, 2007Microsoft has issued a Security Bulletin Advance Notification indicating that their April release cycle will contain five bulletins, some of which have a maximum severity rating of Critical. The notification further states that four of the bulletins are for Windows and one is for Microsoft Content Management Server, and that they also plan on releasing an updated version of the Microsoft Windows Malicious Software Removal Tool. The release is scheduled for Tuesday, April 10, 2007. US-CERT will provide additional information as it becomes available. Multiple Vulnerabilities in MIT Kerberos 5added April 3, 2007US-CERT is aware of multiple vulnerabilities affecting the MIT Kerberos 5 implementation. The most severe of these vulnerabilities may allow a remote attacker to execute arbitrary code on a Kerberos Distribution Center (KDC), which may result in a compromise of the Kerberos key database. More information about these vulnerabilities can be found in the following:
US-CERT recommends users apply the patches as described in MIT krb5 Security Advisories 2007-001, 2007-002, and 2007-003. Microsoft Releases Security Bulletin to Patch Animated Cursor Vulnerabilityadded April 3, 2007Microsoft has released updates to address several vulnerabilities in Microsoft Windows as part of Microsoft Security Bulletin MS07-017. Note that update addresses the animated cursor ANI header stack buffer overflow vulnerability addressed in Vulnerability Note VU#191609. Microsoft noted in the Microsoft Security Bulletin Summary for April 2007 that they will update the bulletin summary with any other security bulletins published during the scheduled release cycle on April 10 or any other day of the month. More information about these vulnerabilities can be found in the Vulnerability Notes Database and Technical Cyber Security Alert TA07-093A. US-CERT strongly encourages users to review the bulletin and follow best-practice security policies to determine what updates should be applied. Microsoft Releases Advance Notification for Critical Security Bulletinadded April 2, 2007Microsoft has issued a Security Bulletin Advance Notification indicating that they will be releasing a single critical Security Bulletin affecting Microsoft Windows. This release falls outside of Microsoft's normal release schedule for security updates, and is scheduled for Tuesday, April 3, 2007. US-CERT will provide additional information as it becomes available. Fake Internet Explorer 7 Installer Phishing Attacksadded March 30, 2007US-CERT is aware of reports of malware using social engineering to propagate. Spam appearing to come from "admin@microsoft.com" contains a link to a malicious file that claims to be an installer for Internet Explorer 7. Typically the file is named "IE7.0.exe" and if executed installs a rootkit on the target machine. US-CERT encourages users to take the following preventative measures to help mitigate this risk:
US-CERT will continue to investigate and provide additional information as it becomes available. |
|||||||||||||||||||||||||||||||||||||||||||||||||||
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more
Get Adobe Reader