Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
Current Activity Calendar
Left Arrow
October 2008
 Right Arrow
Su M Tu W Th F Sa
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31
Please click on a date above to see current activity for that day.

  • Latest Current Activity
    •

    October 07, 2008 - Current Activity

    This is an archived copy of current activity, if you would like to see the most recent version, please click here.

    October 6Bank Acquisitions and Phishing Scams
    October 6VMware Security Advisory VMSA-2008-0016
    October 6Novell Releases eDirectory Version 8.7.3 SP10 FTF1
    September 30Mozilla Releases Firefox and Thunderbird Updates
    September 30WinZip Releases Version 11.2 SR-1
    September 26Multiple Web Browsers Affected by Clickjacking
    September 26Adobe PDF Exploit Toolkits Circulating
    September 25Apple Releases Java Updates for Mac OS X 10.4 and 10.5
    September 25Veritas NetBackup Server/Enterprise Server Vulnerabilities
    September 24Cisco Releases Security Alerts


    Bank Acquisitions and Phishing Scams

    added October 6, 2008 at 02:19 pm

    US-CERT is aware of an increase in public reports of phishing scams related to recent bank acquisitions. Due to an increase in this activity, US-CERT would like to remind users to remain cautious when receiving unsolicited email that could be a potential phishing scam.

    Phishing scams may appear as requests for users to verify personal and bank account information, enroll in additional bank services, or activate new security features. The email messages may contain a link that, when clicked, will take the user to a fraudulent web site that appears to be a legitimate bank web site. The users may be asked to provide personal information or that can further expose them to future compromises. Additionally, these fraudulent web sites may contain malicious code.

    Users are encouraged to take the following measures to protect themselves from phishing scams:


    VMware Security Advisory VMSA-2008-0016

    added October 6, 2008 at 09:14 am

    VMware has released Security Advisory VMSA-2008-0016 to address multiple vulnerabilities. These vulnerabilities affect VMware hosted products, VirtualCenter, ESX, and ESXi. Exploitation of these vulnerabilities may allow an attacker to operate with escalated privileges in a guest operating system, obtain sensitive information, bypass security restrictions, or cause a denial-of-service condition.

    US-CERT encourages users to review VMware Security Advisory VMSA-2008-0016 and apply any necessary updates to help mitigate the risks.


    Novell Releases eDirectory Version 8.7.3 SP10 FTF1

    added October 6, 2008 at 07:58 am

    Novell has released eDirectory 8.7.3 SP10 FTF1 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition on the affected system.

    US-CERT encourages users to review Novell document 3477912 and apply any necessary patches to help mitigate the risks.


    Mozilla Releases Firefox and Thunderbird Updates

    added September 29, 2008 at 09:16 am | updated September 30, 2008 at 10:24 am

    Mozilla has released Firefox and Thunderbird v2.0.0.17 and Firefox v3.0.3 to address multiple vulnerabilities. These may allow an attacker to execute arbitrary code, obtain sensitive information, conduct cross-site scripting attacks, cause a denial-of-service condition, operate with escalated privileges, or conduct Clickjacking attacks. Note that Firefox v3.0.2 was initially released to address these vulnerabilities. Version 3.0.3 was released to correct a flaw that was unrelated to the vulnerabilities.

    US-CERT encourages users and administrators to do the following to help mitigate the risks:


    WinZip Releases Version 11.2 SR-1

    added September 30, 2008 at 07:56 am

    WinZip has released version 11.2 SR-1 to address a vulnerability. This vulnerability is due to flaws in the "gdiplus.dll" library included with the affected versions of the software. Exploitation of this vulnerability may allow an attacker to execute arbitrary code.

    US-CERT encourages users and administrators to review the WinZip 11.2 SR-1 release notes and apply any necessary updates to help mitigate the risks.


    Multiple Web Browsers Affected by Clickjacking

    added September 26, 2008 at 03:28 pm

    US-CERT is aware of public reports of a new cross-browser exploit technique called "Clickjacking." According to one of the reports, Clickjacking gives an attacker the ability to trick a user into clicking on something only barely or momentarily noticeable. Therefore, if a user clicks on a web page, they may actually be clicking on content from another page. A separate report indicates that this flaw affects most web browsers and that no fix is available, but that disabling browser scripting and plug-ins may help mitigate some of the risks.

    An additional report suggests that Firefox users consider using the NoScript plug-in as an added preventative measure. Disabling IFRAMEs by default, as outlined in the Securing Your Web Browser document, is reported to protect against the vulnerability.

    US-CERT encourages users to review the report and follow the security recommendations as described in the Securing Your Web Browser document to help mitigate some of the risks.

    US-CERT will provide additional information as it becomes available.


    Adobe PDF Exploit Toolkits Circulating

    added September 25, 2008 at 11:27 am | updated September 26, 2008 at 10:55 am

    US-CERT is aware of public reports of improved attack toolkits for exploiting vulnerabilities in PDF reader software.

    Another report offering additional information is publicly available.

    US-CERT encourages users to do the following to help mitigate the risks:

    • Do not open untrusted files or files of unknown origin.
    • Install antivirus software, and keep its virus signature files up to date.
    • Regularly apply software patches and updates as supplied by the vendor.


    Apple Releases Java Updates for Mac OS X 10.4 and 10.5

    added September 25, 2008 at 08:22 am

    Apple has released updates for Java for Mac OS X 10.4 and 10.5 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code.

    US-CERT encourages users to review Apple Article HT3178 and HT3179 and apply any necessary updates to help mitigate the risks.


    Veritas NetBackup Server/Enterprise Server Vulnerabilities

    added September 25, 2008 at 08:13 am

    Symantec has released a Security Advisory to address multiple vulnerabilities in the Veritas NetBackup Server/Enterprise Server. These vulnerabilities are due to stack-based buffer overflow conditions and unsafe method calls within an ActiveX control that is part of the scheduler component. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code.

    US-CERT encourages users to review the Symantec Security Advisory and apply any necessary updates to help mitigate the risks.


    Cisco Releases Security Alerts

    added September 24, 2008 at 02:42 pm

    Cisco has released multiple security alerts to address vulnerabilities in the Unified Communications Manager and IOS. These vulnerabilities may allow a remote unauthenticated attacker to cause a denial-of-service condition, obtain sensitive information, or operate with escalated privileges.

    US-CERT encourages users and administrators to review the following Cisco Alerts and apply any necessary updates to help mitigate the risks.