Microsoft has published a Security Bulletin Advance Notification indicating that its July release will contain nine bulletins. These bulletins will have severity ratings of critical and important and will be for Microsoft Windows, Internet Explorer, Microsoft Office, Microsoft Developer Tools, and…
Cisco has released a security advisory to address vulnerabilities affecting the following products:Cisco WebEx Recording Format (WRF)Cisco Advanced Recording Format (ARF)These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages…
Google has released Google Chrome 20.0.1132.43 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review the Google…
Cisco has released three security advisories to address vulnerabilities affecting the following products:Cisco ASA 5500 Series Adaptive Security Appliances (Cisco ASA)Cisco Catalyst 6500 Series ASA Service Module (Cisco ASASM)Cisco AnyConnect Secure Mobility ClientCisco Application Control Engine…
On June 13, the Pennsylvania House of Representatives voted on legislation to massively expand the spying power of both the government and civilians. The ACLU of Pennsylvania is disappointed that the state House passed HB 2400, but the struggle against this bill goes on. We are hopeful that the…
Apple has released a Java update to address multiple vulnerabilities for the following products:Mac OS X v10.6.8Mac OS X Server v10.6.8OS X Lion v10.7.4OS X Lion Server v10.7.4These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT…
Microsoft has released Security Advisory 2719615 to address a vulnerability in Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0. This vulnerability may allow an attacker to execute arbitrary code if a user accesses specially crafted web pages using Internet Explorer. According to the advisory,…
Oracle released its Critical Patch Update for June 2012 containing 14 security fixes for the following products:JDK and JRE 7 Updates 4 and earlierJDK and JRE 6 Update 32 and earlierJDK and JRE 5.0 Update 35 and earlierSDK and JRE 1.4.2_37 and earlierJavaFX 2.1 and earlierUS-CERT encourages users…
Apple has released iTunes 10.6.3 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review Apple Support Article HT5318 and apply any necessary updates to…
Adobe has released a Security Bulletin for Adobe Flash Player to address vulnerabilities affecting the following software versions:Adobe Flash Player 11.2.202.235 and earlier versions for Windows, Macintosh, and LinuxAdobe Flash Player 11.1.115.8 and earlier versions for Android 4.xAdobe Flash…
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, .NET Framework, Lync, and Dynamics AX as part of the Microsoft Security Bulletin Summary for June 2012. These vulnerabilities may allow an attacker to execute arbitrary code or operate with elevated…
The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities:Firefox 13.0Firefox ESR 10.0.5Thunderbird 13.0Thunderbird ESR 10.0.5SeaMonkey 2.10These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition,…
Adobe has released security bulletins to address multiple vulnerabilities for the following products:Adobe Illustrator CS5 (15.0.x) for Windows and MacintoshAdobe Illustrator CS5.5 (15.1) for Windows and MacintoshAdobe Photoshop CS5 (12.0) for Windows and MacintoshAdobe Photoshop CS5.1 (12.1) for…
Microsoft has released a security advisory to address the revocation of a number of unauthorized digital certificates. Maintaining these certificates within your certificate store may allow an attacker to spoof content, perform a phishing attack, or perform a man-in-the-middle attack.The following…
Google has released Google Chrome 19.0.1084.52 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review the Google…
Unsolicited commercial email may be a privacy and/or security violation under the Federal Trade Commission of the United States of America. SPAM should be forwarded to uce@ftc.gov.