U.S. Flag Official website of the Department of Homeland Security

The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.

Cisco Releases Security Advisory for Multiple Cisco WebEx Player Vulnerabilities

Cisco has released a security advisory to address multiple vulnerabilities in WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. These vulnerabilities may allow an attacker to execute arbitrary code.

US-CERT encourages users and administrators to review Cisco security advisory cisco-sa-20110201-webex and apply any necessary updates to help mitigate the risks.

Microsoft Releases Security Advisory 2501696

Microsoft has released Microsoft security advisory 2501696 indicating that it is investigating public reports of a vulnerability affecting Windows. This vulnerability is due to the way MHTML interprets MIME-formatted requests for content blocks within a document. Exploitation of this vulnerability may allow an attacker to obtain sensitive information.

US-CERT encourages users and administrators to review Microsoft security advisory 2501696 and implement the suggested workarounds or utilize Microsoft Fix it 50602 to help mitigate the risks. Additional information regarding this vulnerability can be found on the Microsoft TechNet Security Research & Defense blog.

RealNetworks, Inc. Releases Update for RealPlayer

RealNetworks, Inc. has released an update for Windows RealPlayer 14.0.1 and prior to address a vulnerability. Exploitation of this vulnerability may allow an attacker to execute arbitrary code.

US-CERT encourages users and administrators to review the RealNetworks, Inc. security advisory and apply any necessary updates to help mitigate the risks.

Pages

This product is provided subject to this Notification and this Privacy & Use policy.

Back to Top