Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
Current Activity Calendar
Left Arrow
June 2009
 Right Arrow
Su M Tu W Th F Sa
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30
Please click on a date above to see current activity for that day.

  • Latest Current Activity
    •

    June 11, 2009 - Current Activity

    This is an archived copy of current activity, if you would like to see the most recent version, please click here.

    June 10Adobe Releases Security Updates for Adobe Reader and Acrobat
    June 10Microsoft Releases June Security Bulletin
    June 9Apple Releases Safari 4.0
    June 4Microsoft Releases Advance Notification for June Security Bulletin
    June 2Apple Releases iTunes 8.2 and QuickTime 7.6.2
    May 29VMware Releases Security Advisory
    May 28Microsoft Releases Security Advisory 971778
    May 27BlackBerry Security Advisory
    May 26Microsoft Releases Service Pack 2 for Windows Vista and Windows Server 2008
    May 22Novell Releases Updates for GroupWise


    Adobe Releases Security Updates for Adobe Reader and Acrobat

    added June 10, 2009 at 09:15 am | updated June 10, 2009 at 01:26 pm

    Adobe has released security updates to address multiple vulnerabilities that affect versions of Reader and Acrobat up to and including Reader 9.1.1 and Acrobat 9.1.1. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.

    US-CERT encourages users and administrators to review Adobe Security Bulletin APSB09-07 and apply any necessary updates to help mitigate the risks. Additional information regarding these vulnerabilities can be found in Technical Cyber Security Alert TA09-161A.


    Microsoft Releases June Security Bulletin

    added June 9, 2009 at 01:25 pm | updated June 10, 2009 at 01:25 pm

    Microsoft has released an update to address vulnerabilities in Microsoft Windows, Office, and Internet Explorer as part of the Microsoft Security Bulletin Summary for June 2009. These vulnerabilities may allow an attacker to execute arbitrary code, operate with elevated privileges, or obtain sensitive information.

    US-CERT encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied. Additional information regarding these vulnerabilities can be found in Technical Cyber Security Alert TA09-160A.


    Apple Releases Safari 4.0

    added June 9, 2009 at 10:12 am

    Apple has released Safari 4.0 for Windows and Mac OS X to address multiple vulnerabilities in CFNetwork, CoreGraphics, ImageIO, International Components for Unicode, libxml, Safari, Safari Windows Installer, and WebKit. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, bypass security restrictions, or conduct cross-site scripting attacks.

    US-CERT encourages users and administrators to review Apple article HT3613 and upgrade to Safari 4.0 to help mitigate the risks.


    Microsoft Releases Advance Notification for June Security Bulletin

    added June 4, 2009 at 04:22 pm

    Microsoft has issued a Security Bulletin Advance Notification indicating that the June release cycle will contain ten bulletins, six of which will have a severity rating of critical. The notification states that these critical bulletins are for Microsoft Windows, Office, and Internet Explorer. There will also be three important bulletins for Microsoft Windows and one moderate bulletin for Microsoft Windows. Release of these bulletins is scheduled for Tuesday, June 9.

    US-CERT will provide additional information as it becomes available.


    Apple Releases iTunes 8.2 and QuickTime 7.6.2

    added June 2, 2009 at 08:25 am

    Apple has released iTunes 8.2 and QuickTime 7.6.2 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.

    US-CERT encourages users to review Apple articles HT3592 and HT3591 and apply any necessary updates to help mitigate the risks.


    VMware Releases Security Advisory

    added May 29, 2009 at 09:02 am

    VMware has released a security advisory to address multiple vulnerabilities in VMware Workstation, Player, ACE, Server, Fusion, ESX, and ESXi. The first of these vulnerabilities is due to a error in the VMware Descheduled Time Accounting driver. Exploitation of this vulnerability may result in denial of service in Windows-based virtual machines. The second vulnerability is due to a known error in the libpng package used by some VMware products. Exploitation of this vulnerability may allow an attacker to execute arbitrary code.

    US-CERT encourages users and administrators to review the VMware security advisory and apply any necessary updates to help mitigate the risks.


    Microsoft Releases Security Advisory 971778

    added May 28, 2009 at 04:44 pm

    Microsoft has released security advisory 971778 indicating that it is investigating public reports of a vulnerability in DirectX. This vulnerability exists in the way Microsoft DirectShow handles QuickTime files and does not require Apple QuickTime to be installed on the system. By convincing a user to open a specially crafted QuickTime media file, a remote attacker may be able to execute arbitrary code. Additionally, the advisory indicates that Microsoft Windows 2000 Service Pack 4, Windows XP, and Server 2003 are vulnerable.

    US-CERT encourages users and administrators to review Microsoft security advisory 971778 and apply the workarounds provided in the document to help mitigate the risks.

    US-CERT will provide additional information as it becomes available.


    BlackBerry Security Advisory

    added May 27, 2009 at 08:55 am

    Research In Motion has released security advisory KB18327 to address multiple vulnerabilities in the PDF distiller of the BlackBerry Attachment Service. By convincing a user to open a specially crafted PDF file on a BlackBerry smartphone, an attacker may be able to execute arbitrary code on the computer hosting the BlackBerry Attachment Service.

    US-CERT encourages users and administrators to review BlackBerry security advisory KB18327 and apply the update or implement the workarounds provided in the document to help mitigate the risks.


    Microsoft Releases Service Pack 2 for Windows Vista and Windows Server 2008

    added May 26, 2009 at 05:13 pm

    Microsoft has released Service Pack 2 for Windows Vista and Windows Server 2008. This service pack contains multiple security updates and hotfixes. US-CERT encourages users and administrators to review Microsoft Knowledge Base article 948465 and follow best-practice security policies to determine if the update should be applied.


    Novell Releases Updates for GroupWise

    added May 22, 2009 at 12:07 pm

    Novell has released updates for GroupWise 7 and 8 to address multiple vulnerabilities in GroupWise WebAccess and Internet Agents. These vulnerabilities may allow an attacker to execute arbitrary code, conduct cross-site scripting attacks, or obtain unauthorized access.

    US-CERT encourages users and administrators to review the following Novell documents and apply any necessary updates to help mitigate the risks: