The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
The Mozilla Foundation has released Firefox 6 and Firefox 3.6.20 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, operate with escalated privileges, or obtain sensitive information.
RIM has released a security advisory to address a vulnerability in the BlackBerry MDS Connection Service and BlackBerry Messaging Agent for the BlackBerry Enterprise Server. The vulnerability may allow an attacker to execute arbitrary code or gain unauthorized access to the BlackBerry Enterprise Server.
US-CERT encourages users and administrators to review the BlackBerry security advisory KB27244 and apply any necessary updates to help mitigate the risks.
Adobe has released security bulletins to alert users of critical and important vulnerabilities in multiple products. The following products are affected:
- Adobe Shockwave Player 188.8.131.526 and earlier versions on the Windows and Macintosh operating systems
- Adobe Flash Player 10.3.181.36 and earlier versions for Windows, Macintosh, Linux and Solaris
- Adobe Flash Player 10.3.185.25 and earlier versions for Android
- Adobe Flash Media Server 4.0.2 and earlier versions
- Adobe Flash Media Server 3.5.6 and earlier versions for Windows and Linux
- Adobe Photoshop CS5 and CS5.1 and earlier for Windows and Macintosh
- RoboHelp 184.108.40.206 and earlier, RoboHelp 8, RoboHelp Server 9, and RoboHelp Server 8
Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, take control of an affected system, or perform a cross-site scripting attack.