Mailing Lists & Feeds
Current Activity Calendar
| May 31, 2007 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.Mozilla Releases Security Advisories to Address Multiple Vulnerabilitiesadded May 31, 2007 at 08:55 am | updated May 31, 2007 at 04:03 pm
The Mozilla Foundation has released Security Advisories to address multiple vulnerabilities in Firefox, Thunderbird, and SeaMonkey. The impacts of these vulnerabilities include arbitrary code execution, denial of service, memory corruption and cross-site scripting. Apple Releases a Security Update for QuickTime 7.1.6 to Address Multiple Vulnerabilitiesadded May 29, 2007 at 04:57 pm | updated May 30, 2007 at 09:51 am
Apple has released a Security Update for QuickTime 7.1.6 to address multiple vulnerabilities in Apple QuickTime for Java. The impacts of these vulnerabilities include arbitrary code execution and information disclosure. Apple Releases Security Update to Address Multiple Vulnerabilities in Various Productsadded May 24, 2007 at 04:47 pm | updated May 25, 2007 at 01:59 pm
Apple has released Security Update 2007-005 to address multiple vulnerabilities in various products. The impacts of these vulnerabilities include denial of service, arbitrary code execution, information disclosure, and privilege escalation. Microsoft Office ActiveX Control Vulnerabilityadded May 23, 2007 at 08:46 pm | updated May 24, 2007 at 03:13 pmUS-CERT is aware of reports of a vulnerability in a Microsoft Office 2000 ActiveX control. Excessive data passed to the OUACTRL ActiveX control may result in a buffer overflow allowing arbitrary code execution or causing a denial-of-service condition. This vulnerability was fixed in the Microsoft UA Control Vulnerability update (released May 12, 2000), which is included in Microsoft Office 2000 SP3.US-CERT strongly encourages users to review the referenced documents and follow best-practice security policies to determine what updates should be applied. Cisco Releases Security Advisory to Address Multiple Vulnerabilities in Cisco IOSadded May 22, 2007 at 02:30 pmCisco has released Security Advisory cisco-sa-20070522-SSL to address multiple vulnerabilities in Cisco IOS. These vulnerabilities may lead to a sustained denial-of-service condition when processing malformed SSL messages. US-CERT recommends administrators apply the workarounds as described in Cisco Security Advisory cisco-sa-20070522-SSL. US-CERT will provide additional information as it becomes
available. Microsoft Releases Security Advisory to Announce Microsoft Office Enhancementsadded May 22, 2007 at 09:15 amMicrosoft has released the Microsoft Office Isolated Conversion Environment (MOICE) feature and File Block Functionality for Microsoft Office 2003 and 2007 Office system. More information regarding these enhancements can be found in Microsoft Security Advisory 937696. US-CERT strongly encourages users to review the Security Advisory and take the appropriate actions and implement these enhancements where pertinent. Symantec Norton Internet Security ActiveX Control Vulnerabilityadded May 16, 2007 at 02:42 pm
US-CERT is aware of a vulnerability in the Symantec Norton Internet Security 2004 ISAlertDataCOM ActiveX control. By convincing a user to view a specially crafted HTML document (e.g., a web page or an HTML email message or attachment), an attacker may be able to execute arbitrary code with the privileges of the user or could cause the web browser to crash.
|
|||||||||||||||||||||||||||||||||||||||||||||||||||
Information For
Sign Up
Reporting
