Official website of the Department of Homeland Security
The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Cisco Releases Advisory for IronPort Encryption Appliance
Published Wednesday, February 10, 2010
Cisco has released an advisory to address multiple vulnerabilities in IronPort Encryption Appliance. Exploitation of these vulnerabilities may allow a remote, unauthenticated attacker to execute arbitrary code or obtain sensitive information.
US-CERT encourages users and administrators to review Cisco Security Advisory cisco-sa-20100210-ironport and apply any necessary workarounds to help mitigate the risks. Additional information regarding these vulnerabilities can be found in Cisco Applied Mitigation Bulletin 111668.
Microsoft Releases February Security Bulletin
Published Tuesday, February 9, 2010
Microsoft has released an update to address vulnerabilities in Microsoft Windows and Office as part of the Microsoft Security Bulletin Summary for February 2010. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or operate with elevated privileges.
US-CERT encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied.
Oracle Releases Security Alert for WebLogic Server Vulnerability
Published Sunday, February 7, 2010
Oracle has released a security alert to address a vulnerability in Oracle WebLogic Server. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands on an affected system.
US-CERT encourages users and administrators to review the Oracle security alert and apply any necessary updates to help mitigate the risks.
Pages
This product is provided subject to this Notification and this Privacy & Use policy.