U.S. Flag Official website of the Department of Homeland Security

The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.

Cisco Releases Security Advisories

Cisco has released a security advisory to address a vulnerability in some versions of Cisco Secure Access Control System (ACS). This vulnerability may allow an attacker to change the password of a user account without any previous access to the user's account or knowledge of the account's previous password.

Additionally, Cisco has released a security advisory to address a vulnerability in some versions of the Cisco Network Access Control (NAC) Guest Server System Software. This vulnerability may allow an unauthenticated user to access the protected network.

US-CERT encourages users and administrators to review Cisco security advisories cisco-sa-20110330-acs and cisco-sa-20110330-nac and apply any necessary updates to help mitigate the risks.

Google Releases Chrome 10.0.648.204

Google has released Chrome 10.0.648.204 for Windows, Mac, Linux, and Chrome Frame to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

US-CERT encourages users and administrators to review the Google Chrome Releases blog entry and apply any necessary updates to help mitigate the risks.

VideoLAN Releases VLC Media Player 1.1.8

VideoLAN has released VLC Media Player 1.1.8 to address two vulnerabilities. These vulnerabilities are due to the improper handling of .AMV and .NSV files. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

US-CERT encourages users and administrators to review the release notes for VLC Media Player 1.1.8 and apply any necessary updates to help mitigate the risks.

Pages

This product is provided subject to this Notification and this Privacy & Use policy.

Back to Top