U.S. Flag Official website of the Department of Homeland Security

The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.

Risks of Exposing the Intelligent Platform Management Interface (IPMI)

Multiple weaknesses exist in several server platforms employing IPMI. Exploitation of these vulnerabilities could allow an attacker to take control of the affected system or expose sensitive server information. 

Server administrators are encouraged to review US-CERT Alert TA13-207A and restrict IPMI access so that the interface cannot be reached from the Internet.

Microsoft Releases Security Advisory for Microsoft Malware Protection Engine

Microsoft has released a security advisory to address a vulnerability to the Microsoft Malware Protection Engine. Successful exploitation of the vulnerability could allow an attacker to cause a denial of service.

An update is available for the following affected software:

Mozilla Releases Security Updates for Firefox, Firefox ESR, Thunderbird, and Netscape Portable Runtime

The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox, Firefox ESR, Thunderbird, and Netscape Portable Runtime. Exploitation of these vulnerabilities may allow attackers to execute arbitrary code, cause a denial of service, or conduct clickjacking attacks.

The following updates are available:

  • Firefox 30
  • Firefox ESR 24.6
  • Thunderbird 24.6
  • Netscape Portable Runtime 4.10.6

Users and administrators are encouraged to review the Security Advisories for Firefox, Firefox ESR, Thunderbird, and Netscape Portable Runtime to determine which updates should be applied.

Pages

This product is provided subject to this Notification and this Privacy & Use policy.

Back to Top