Mailing Lists & Feeds
Current Activity Calendar
| June 05, 2007 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.PHP Vulnerabiltyadded June 5, 2007 at 03:33 pmUS-CERT is aware of a publicly reported vulnerability in PHP. PHP version 5.2.3 may be vulnerable to an integer overflow within the chunk_split() function. More information can be found in the following PHP Security Blog. US-CERT will provide additional information as it becomes available. Microsoft Internet Explorer and Mozilla Firefox Vulnerabilitiesadded June 4, 2007 at 03:25 pm | updated June 5, 2007 at 09:33 amUS-CERT is aware of a public report of multiple vulnerabilities in Mozilla Firefox and Microsoft Internet Explorer. US-CERT encourages users to follow the steps in the Securing Your Web Browser document. Apple Releases Update for Xserve Lights-Out Management Firmwareadded June 1, 2007 at 03:48 pm
Apple releases Firmware Update 1.0 to address a vulnerability in Xserve Lights-Out Management Firmware. The vulnerability lies in Apple's implementation of IPMI and may allow a remote, unprivileged ipmitool user to gain administrative privileges on a Xserve system. Mozilla Releases Security Advisories to Address Multiple Vulnerabilitiesadded May 31, 2007 at 08:55 am | updated May 31, 2007 at 04:03 pm
The Mozilla Foundation has released Security Advisories to address multiple vulnerabilities in Firefox, Thunderbird, and SeaMonkey. The impacts of these vulnerabilities include arbitrary code execution, denial of service, memory corruption and cross-site scripting. Apple Releases a Security Update for QuickTime 7.1.6 to Address Multiple Vulnerabilitiesadded May 29, 2007 at 04:57 pm | updated May 30, 2007 at 09:51 am
Apple has released a Security Update for QuickTime 7.1.6 to address multiple vulnerabilities in Apple QuickTime for Java. The impacts of these vulnerabilities include arbitrary code execution and information disclosure. Apple Releases Security Update to Address Multiple Vulnerabilities in Various Productsadded May 24, 2007 at 04:47 pm | updated May 25, 2007 at 01:59 pm
Apple has released Security Update 2007-005 to address multiple vulnerabilities in various products. The impacts of these vulnerabilities include denial of service, arbitrary code execution, information disclosure, and privilege escalation. Microsoft Office ActiveX Control Vulnerabilityadded May 23, 2007 at 08:46 pm | updated May 24, 2007 at 03:13 pmUS-CERT is aware of reports of a vulnerability in a Microsoft Office 2000 ActiveX control. Excessive data passed to the OUACTRL ActiveX control may result in a buffer overflow allowing arbitrary code execution or causing a denial-of-service condition. This vulnerability was fixed in the Microsoft UA Control Vulnerability update (released May 12, 2000), which is included in Microsoft Office 2000 SP3.US-CERT strongly encourages users to review the referenced documents and follow best-practice security policies to determine what updates should be applied. |
|||||||||||||||||||||||||||||||||||||||||||||||||||
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more
Get Adobe Reader