Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
Current Activity Calendar
Left Arrow
December 2008
 Right Arrow
Su M Tu W Th F Sa
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31
Please click on a date above to see current activity for that day.

  • Latest Current Activity
    •

    December 11, 2008 - Current Activity

    This is an archived copy of current activity, if you would like to see the most recent version, please click here.

    December 11Airline Ticket Email Scam
    December 11CA ARCserve Backup Vulnerability
    December 11Microsoft Releases Security Advisory (961051)
    December 9Microsoft Releases Security Advisory (960906)
    December 9Microsoft Releases December Security Bulletin
    December 9PHP 5.2.8 Released
    December 8Malware Spreading via Social Networking Sites
    December 5Microsoft Releases Advanced Notification for December Security Bulletin
    December 3Sun Releases Updates for Java SE
    November 24Apple Releases iPhone OS 2.2 and iPhone OS for iPod touch 2.2


    Airline Ticket Email Scam

    added December 11, 2008 at 03:31 pm

    US-CERT is aware of public reports of an email scam circulating that is targeting holiday travelers. The email messages related to this scam appear to come from legitimate major airlines and contain a .zip attachment.  This .zip attachment appears to contain a purchase invoice and flight ticket. If a user opens this attachment, malicious code may be installed on the system.

    US-CERT encourages users to do the following to help mitigate the risks:


    CA ARCserve Backup Vulnerability

    added December 11, 2008 at 02:06 pm

    CA has released a Security Notice and software patches to address a vulnerability in ACRserve Backup. This vulnerability is due to insufficient verification of client data. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code or crash the LDBserver service.

    US-CERT encourages users to review the CA Security Notice and apply the appropriate patch to help mitigate the risks.


    Microsoft Releases Security Advisory (961051)

    added December 11, 2008 at 10:35 am

    Microsoft has released Security Advisory 961051 to address reports of attacks against a new vulnerability in Internet Explorer 7. By convincing a user to view a specially crafted XML document, an attacker may be able to execute arbitrary code with the privileges of the user. Additionally, Microsoft indicates that it is aware of limited and targeted attacks using this vulnerability.

    US-CERT encourages users to review the Microsoft Security Advisory 961051 and implement any Suggested Actions to help mitigate the risks.

    Additional information is available in the Vulnerability Notes database. US-CERT will provide further details as they become available.


    Microsoft Releases Security Advisory (960906)

    added December 9, 2008 at 05:44 pm

    Microsoft has released Security Advisory 960906 to address reports of a vulnerability in the WordPad Text Converter for Word 97 files. The advisory indicates that Windows 2000 Service Pack 4, Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2 are affected by this vulnerability. Exploitation of this vulnerability may allow an unauthenticated attacker to execute arbitrary code or obtain local user rights. Additionally, Microsoft indicates that they are aware of limited and targeted attacks using this vulnerability.

    US-CERT encourages users to review Microsoft Security Advisory 960906 and implement any necessary Suggested Actions to help mitigate the risks.

    US-CERT will provide additional information as it becomes available.


    Microsoft Releases December Security Bulletin

    added December 9, 2008 at 02:13 pm

    Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, Developer Tools and Software, and Server Software as part of the Microsoft Security Bulletin Summary for December 2008. These vulnerabilities may allow an attacker to execute arbitrary code or escalate privileges.

    US-CERT encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied.


    PHP 5.2.8 Released

    added December 9, 2008 at 09:09 am

    The PHP Group has released PHP version 5.2.8 to address a vulnerability in the magic_quotes functionality. This vulnerability was introduced in PHP version 5.2.7. In addition to correcting this regression, PHP version 5.2.8 addresses a number of vulnerabilities that were originally addressed by version 5.2.7.

    US-CERT encourages users to upgrade to PHP 5.2.8 or implement the workaround as described in the PHP 5.2.8 Release Announcement.


    Malware Spreading via Social Networking Sites

    added December 8, 2008 at 02:48 pm

    US-CERT is aware of public reports of malware spreading via popular social networking sites. The reports indicate that this malware is spreading through spam email messages appearing to come from Myspace.com, Facebook.com, and Classmates.com. The email contains a message indicating that there is a YouTube video available and instructs the user to follow the link to view the video. If users click on this link, they will be prompted to update Adobe Flash Player. This update is not a legitimate Adobe Flash Player update--it is malicious code.

    US-CERT encourages users and administrators to do the following to help mitigate the risks:

    • Install antivirus software and keep the virus signatures up to date.
    • Do not follow unsolicited links.
    • Use caution when downloading and installing applications.
    • Obtain software applications and updates directly from the vendor's website.
    • Configure your web browser as described in the Securing Your Web Browser document.
    • Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
    • Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.


    Microsoft Releases Advanced Notification for December Security Bulletin

    added December 5, 2008 at 09:53 am

    Microsoft has issued a Security Bulletin Advance Notification indicating that the December release cycle will contain eight bulletins, six of which will have a severity rating of Critical. The notification states that these Critical bulletins are for Microsoft Windows, Internet Explorer, and Office. There will also be two Important bulletins for Microsoft Windows and Office. Release of these bulletins is scheduled for Tuesday, December 9.

    US-CERT will provide additional information as it becomes available.


    Sun Releases Updates for Java SE

    added December 3, 2008 at 11:45 am

    Sun has released updates for Java SE. These updates address multiple security issues in Java Runtime Environment (JRE) and Java SE Development Kit (JDK).
     
    Note that the Sun security alerts corresponding to the specific vulnerabilities addressed in this update are not available at the time of this entry.

    US-CERT encourages users to review Java SE 6 Release Notes and apply any necessary updates.


    Apple Releases iPhone OS 2.2 and iPhone OS for iPod touch 2.2

    added November 24, 2008 at 08:03 am

    Apple has released OS 2.2 for the iPhone and iPod touch to address multiple vulnerabilities. These vulnerabilities affect CoreGraphics, ImageIO, Networking, Office Viewer, Password Lock, Safari, and Webkit. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, place arbitrary calls, cause a denial-of-service condition, spoof user interface,  and obtain sensitive information.

    US-CERT encourages users to review Apple Article HT3318 and apply any necessary updates.