Mailing Lists & Feeds
Current Activity Calendar
| July 20, 2007 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.Oracle Releases July Critical Patch Updateadded July 18, 2007 at 01:32 pm | updated July 20, 2007 at 07:55 am
Oracle has released their July Critical Patch Update (CPU) to address vulnerabilities across all products, some of which have a maximum severity rating of High. This CPU contains eighteen security fixes for Oracle Database; one for Oracle Application Express; four for Oracle Application Server; five for Oracle Collaboration Suite; fourteen for Oracle E-Business Suite; and seven for Oracle PeopleSoft Enterprise. Multiple Vulnerabilities in Mozilla Firefoxadded July 18, 2007 at 09:36 am | updated July 19, 2007 at 03:01 pm
US-CERT is aware of multiple vulnerabilities affecting the Mozilla Firefox web browser. These vulnerabilities may allow a remote, unauthenticated attacker to execute arbitrary code, inject and execute arbitrary script, or cause memory corruption on an affected system.
Internet Explorer Code Execution Vulnerabilityadded July 16, 2007 at 02:42 pm | updated July 18, 2007 at 07:52 am
US-CERT is aware of publicly available exploit code for a vulnerability that uses Microsoft Internet Explorer to send malicious input to the Trillian instant messenger client. The public exploit code demonstrates the vulnerability using the AIM URI handler. To trigger this vulnerability, an attacker must persuade a user who has an Instant Messaging client installed to access a specially crafted web page with Internet Explorer. This exploit is similar to the "Web Browser Code Execution Vulnerability" reported by US-CERT on July 10, 2007. McAfee Products Contain Multiple Vulnerabilitiesadded July 16, 2007 at 01:42 pm
McAfee ePolicy Orchestrator, ProtectionPilot, and Common Management Agent products contain several vulnerabilities. These vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial-of-service condition on an affected system. Apple Releases Security Update to Address Multiple Vulnerabilities in QuickTimeadded July 12, 2007 at 11:18 am | updated July 12, 2007 at 05:06 pm
Apple has released an update to address multiple vulnerabilities in QuickTime. These vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code, execute arbitrary commands, or cause a denial-of-service condition on an affected system.
Adobe Flash Player Multiple Vulnerabilitiesadded July 11, 2007 at 12:19 pm | updated July 12, 2007 at 10:41 amAdobe Systems has released a Security bulletin to address multiple vulnerabilities in their Flash Player, some of which may allow an unauthenticated attacker to execute arbitrary code on an affected system. The Adobe Security bulletin further states that all operating systems with a vulnerable version of Flash Player are affected. More information regarding these vulnerabilities can be found in the following:
Cisco Releases Security Advisories for Multiple Vulnerabilities in Unified Communications Manageradded July 11, 2007 at 04:51 pm
Cisco has published two separate advisories, cisco-sa-20070711-cucm and cisco-sa-20070711-voip, describing several vulnerabilities affecting Cisco Unified Communications Manager. The impacts of these vulnerabilities vary, the most severe of which may allow a remote attacker to execute arbitrary code on an affected system. |
|||||||||||||||||||||||||||||||||||||||||||||||
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more
Get Adobe Reader