Current Activity Calendar
| December 14, 2007 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.HP Info Center Software Public Exploit Codeadded December 12, 2007 at 10:40 am | updated December 14, 2007 at 03:12 pm
US-CERT is aware of a vulnerability affecting HP Info Center Software, which allows one-touch access to features on HP laptops. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands or to view or alter the system registry on affected systems. Apple Releases Security Update to Address Multiple Vulnerabilities in QuickTimeadded December 14, 2007 at 08:33 am
Apple has released a Security Update to address multiple vulnerabilities in QuickTime. The impacts of these vulnerabilities include arbitrary code execution and denial of service. Microsoft Releases December Security Bulletinsadded December 11, 2007 at 02:07 pm | updated December 12, 2007 at 08:09 am
Microsoft has released updates to address vulnerabilities in Windows, DirectX, DirectShow, Windows Media Format Runtime, and Internet Explorer as part of the Microsoft Security Bulletin Summary for December 2007. Active Exploitation Using Malicious Microsoft Access Databasesadded December 10, 2007 at 01:05 pm
US-CERT is aware of a stack buffer overflow vulnerability in the way that Microsoft Access handles specially crafted database files. Opening a specially crafted Microsoft Access Database (e.g., .MDB) can cause arbitrary code execution without requiring any additional user interaction. Microsoft Access files are considered to be high-risk, so it may be possible to execute arbitrary code without using a vulnerability in Microsoft Access.
Microsoft Releases Advance Notification for December Security Bulletinadded December 6, 2007 at 01:32 pm
Microsoft has issued a Security Bulletin Advance Notification indicating that its December release cycle will contain 7 bulletins, three of which have a severity rating of Critical. The notification further states that the bulletins are for the Windows operating system, various Windows operating system components and Internet Explorer. The release is scheduled for Tuesday, December 11, 2007. Cisco Releases Security Documents for Vulnerabilitiesadded December 5, 2007 at 02:48 pm
Cisco has released security documents in reponse to two vulnerabilities.
Microsoft Releases Security Advisory to Address Web Proxy Auto-Discovery Vulnerabilityadded December 4, 2007 at 10:10 am
Microsoft has released Microsoft Security Advisory 945713 in response to a vulnerability in Web Proxy Auto-Discovery (WPAD). This vulnerability may allow an attacker to conduct a man-in-the-middle attack and gain access to sensitive information. |
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more