The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
The Microsoft Security Response Center has posted a blog entry indicating that it has revoked the update related to Microsoft security bulletin MS10-025 because it does not effectively correct the underlying vulnerability. This vulnerability affects Windows Media Services running on Windows 2000 Server. The blog entry indicates that Microsoft has targeted a re-release of the update for next week.
US-CERT encourages users and administrators to review the Microsoft Security Response Center blog entry and implement the suggested guidance to help mitigate the risks.
US-CERT will provide additional information as it becomes available.
VideoLAN has released a security advisory to address multiple vulnerabilities in VLC Media Player. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.
US-CERT encourages users and administrators to review VideoLAN security advisory VideoLAN-SA-1003 and apply any necessary updates or workarounds to help mitigate the risks.
Cisco Releases Security Advisory for Small Business Video Surveillance Cameras and 4-Port Gigabit Security Routers
Cisco has released a security advisory to address a vulnerability that affects Cisco Small Business Video Surveillance Cameras and Cisco RVS4000 4-Port Gigabit Security Routers. This vulnerability may allow an unprivileged user to gain full administrative access on the device or obtain sensitive information.
US-CERT encourages users and administrators to review Cisco security advisory cisco-sa-20100421-vsc and apply any necessary updates or workarounds to help mitigate the risks.