The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Adobe has released an update for Reader and Acrobat to address multiple vulnerabilities. These vulnerabilities affect the following versions:
- Adobe Reader 9.3.3 and earlier versions for Windows, Macintosh, and UNIX
- Adobe Acrobat 9.3.3 and earlier versions for Windows and Macintosh
Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition or execute arbitrary code.
US-CERT encourages users and administrators to review Adobe Security Bulletin APSB10-17 and apply any necessary updates to help mitigate the risks.
Cisco has released a security advisory to address a vulnerability affecting IOS Software Release 15.1(2)T. This vulnerability may allow an attacker to cause a denial-of-service condition by sending a specially crafted packet through normal network traffic.
US-CERT encourages users and administrators to review Cisco advisory cisco-sa-20100812-tcp and apply any necessary updates to help mitigate the risks.
Apple has released QuickTime 7.6.7 for Windows to address a vulnerability. This vulnerability is due to a stack buffer overflow that exists in QuickTime error logging. By convincing a user to open a specially crafted movie file, a remote attacker may be able to execute arbitrary code or cause a denial-of-service condition.
US-CERT encourages users and administrators to review Apple article HT4290 and update to QuickTime 7.6.7 to help mitigate the risks.