Original release date: September 20, 2013 Apple has released iOS 7 for the iPhone 4 and later, iPod touch 5 th generation and later, and iPad 2 and later to address multiple vulnerabilities. These vulnerabilities could allow remote attackers to execute arbitrary code, cause a cross-site scripting…
Original release date: September 20, 2013 Apple has released a security update for OS X Server v2.2.2 for OS X Mountain Lion v10.8 or later to address multiple vulnerabilities. These vulnerabilities may allow a remote attacker to cause a denial of service, execute arbitrary code or cause a…
Original release date: September 18, 2013 Microsoft has released Security Advisory 2887505 regarding a remote code execution vulnerability ( CVE-2013-3893 ) impacting Internet Explorer versions 6 through 11. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability in…
Original release date: September 18, 2013 The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities. Firefox 24.0 Firefox ESR 17.0.9 Thunderbird 24.0 Thunderbird ESR 17.0.9 Seamonkey 2.21 These vulnerabilities could allow a remote attacker to execute…
Original release date: September 13, 2013 Apple has released OS X v10.8.5 and Security Update 2013-004 to address multiple vulnerabilities. These vulnerabilities could lead to a denial of service, cross-site scripting, elevation of privilege, or the execution of arbitrary code. US-CERT encourages…
Original release date: September 10, 2013 Microsoft has released updates to address vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer, and Microsoft Server Software as part of the Microsoft Security Bulletin Summary for September 2013 . These vulnerabilities could allow…
Original release date: September 10, 2013 Adobe has released a security update for Adobe Shockwave Player 12.0.3.133 and earlier versions for Windows and Macintosh to address multiple vulnerabilities. These vulnerabilities, if exploited, could allow an attacker to run malicious code on an affected…
Original release date: September 10, 2013 Adobe has released security updates for Adobe Flash Player to address multiple vulnerabilities. Adobe has also released security updates for Adobe Reader and Acrobat XI (11.0.03) and earlier versions for Windows and Macintosh to address multiple…
According to documents leaked by Edward Snowden, the Guardian newpaper has reported that the NSA is reading encrypted communications. The US spent over $250,000,000 per year on just one of the programs to crack the code. The Guardian reports: US and British intelligence agencies have successfully…
Original release date: September 06, 2013 Cisco has released a security advisory to address multiple vulnerabilities in Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. These vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial of…
Original release date: August 29, 2013 Cisco has released a security advisory to address a vulnerability in Cisco Secure Access Control Server (ACS) versions 4.0 through 4.2.1.15. This vulnerability could allow an unauthenticated, remote attacker to execute arbitrary commands. The vulnerability is…
by the FBI Cyber Division The FBI has become aware of a spear phishing e-mail made to appear as if it were from the National Center for Missing and Exploited Children. The subject of the e-mail is “Search for Missing Children,” and a zip file containing 3 malicious files is attached. E-mail…
Unsolicited commercial email may be a privacy and/or security violation under the Federal Trade Commission of the United States of America. SPAM should be forwarded to uce@ftc.gov.