Mailing Lists & Feeds
Current Activity Calendar
| May 20, 2009 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.NSD DNS Buffer Overflow Vulnerabilityadded May 20, 2009 at 09:23 am | updated May 20, 2009 at 03:54 pm
NLnet Labs has released a patch to address a vulnerability in NSD DNS versions 2.0.0 through 3.2.1. This vulnerability is due to an error in the way NSD processes certain types of packets that may lead to a buffer overflow. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to cause the DNS software to crash, resulting in a denial-of-service condition. Cisco Releases Security Advisory for CiscoWorks TFTP Vulnerabilityadded May 20, 2009 at 01:31 pm
Cisco has released a security advisory to address a vulnerability in CiscoWorks TFTP. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to view or modify application and host operating system files, possibly resulting in arbitrary code execution or a denial-of-service condition. The security advisory indicates that the following Cisco products are affected by this vulnerability:
Mac OS X Includes Known Vulnerable Version of Javaadded May 20, 2009 at 11:22 am
Current releases of Mac OS X (version 10.5.7 and version 10.4.11 with security update 2009-002) include a version of Java Runtime Environment (JRE) containing known security vulnerabilities. US-CERT is aware of publicly available exploit code for one of these vulnerabilities. This vulnerability may allow untrusted applets to obtain read, write, and execute permissions to local files and applications with the privileges of the local user. A fix for this vulnerability has been released by Sun, but Mac OS X users cannot apply the fix directly. Mac OS X users must use Apple updates to obtain updated JRE versions. At this time, Apple has not yet released an update to address this issue. Microsoft Internet Information Services (IIS) WebDAV Request Vulnerabilityadded May 18, 2009 at 08:54 am | updated May 19, 2009 at 08:02 am
US-CERT is aware of public reports of a vulnerability affecting Microsoft Internet Information Services 6 (IIS6). Reports indicate that this vulnerability is due to improper handling of unicode tokens. Exploitation of this vulnerability may allow a remote attacker to bypass authentication methods, allowing an attacker to upload files to a WebDAV folder or obtain sensitive information. NTFS file ACLs will generally prevent the anonymous internet user from writing to an unauthorized area. US-CERT is also aware of publicly available exploit code and active exploitation of this vulnerability. Gumblar Malware Exploit Circulatingadded May 18, 2009 at 12:47 pm
US-CERT is aware of public reports of a malware exploit circulating. This is a drive-by-download exploit with multiple stages and is being referred to as Gumblar. The first stage of this exploit attempts to compromise legitimate websites by injecting malicious code into them. Reports indicate that these website infections occur primarily through stolen FTP credentials but may also be compromised through poor configuration settings, vulnerable web applications, etc. The second stage of this exploit occurs when users visit a website compromised by Gumblar. Users who visit these compromised websites and have not applied updates for known PDF and Flash Player vulnerabilities may become infected with malware. This malware may be used by attackers to monitor network traffic and obtain sensitive information, including FTP and login credentials, that can be used to conduct further exploits. Additionally, this malware may also redirect Google search results for the infected user. Adobe Releases Security Updates for Adobe Reader and Acrobatadded May 13, 2009 at 09:12 am | updated May 13, 2009 at 04:34 pm
Adobe has released security updates to address a vulnerability that affects Reader 9.1 and earlier and Acrobat 9.1 and earlier. This vulnerability could allow an attacker to execute arbitrary code or cause a denial-of-service condition. Apple Releases Security Update 2009-002, Mac OS X v10.5.7 and Safari 3.2.3added May 13, 2009 at 09:12 am | updated May 13, 2009 at 04:33 pm
Apple has released Security Update 2009-002 and Mac OS X v10.5.7 to address multiple vulnerabilities in a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, leverage additional attacks, or obtain elevated privileges. Microsoft Releases May Security Bulletinadded May 12, 2009 at 01:35 pm | updated May 13, 2009 at 04:32 pm
Microsoft has released an update to address a vulnerability in Microsoft Office as part of the Microsoft Security Bulletin Summary for May 2009. By convincing a user to open a specially crafted PowerPoint file, an attacker may be able to execute arbitrary code. Microsoft Releases Advance Notification for May Security Bulletinadded May 7, 2009 at 02:58 pm
Microsoft has issued a Security Bulletin Advance Notification indicating that the May release cycle will contain one bulletin with a maximum severity rating of Critical. The notification states that the Critical bulletin is for Microsoft PowerPoint. The release is scheduled for Tuesday, May 12. Adobe Releases Security Bulletin for Flash Media Serveradded May 7, 2009 at 02:30 pm
Adobe has released Security Bulletin APSB09-05 to address a potential vulnerability in versions of Flash Media Server up to and including version 3.5.1.
This vulnerability may allow an attacker to "execute remote procedures within a server side ActionScript file running on a Flash Media Server." According to Adobe, this issue affects versions of Flash Media Interactive Server and Flash Media Streaming Server. |
||||||||||||||||||||||||||||||||||||||||||||||||||||
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more
