Current Activity Calendar
| July 10, 2008 - Current ActivityThis is an archived copy of current activity, if you would like to see the most recent version, please click here.Sun Releases Updates for Java SEadded July 10, 2008 at 08:30 am
Sun has released updates for Java SE. These updates address multiple vulnerabilities in Java Runtime Environment (JRE), Java Web Start, Java Management Extensions (JMX), JDK, and Java Runtime Environment Virtual Machine. These vulnerabilities may allow a remote attacker to execute arbitrary code, bypass security restrictions, obtain sensitive information or cause a denial-of-service condition.
New Storm Worm Variant Spreadingadded July 9, 2008 at 09:03 am
US-CERT has received reports of new Storm Worm activity. The latest activity uses messages that refer to the conflict in the Middle East. This Trojan is spread via unsolicited email messages that contain a link to a malicious website. The website is noted as having the following malicious characteristics which may be used to infect the user's system with malicious code.
Microsoft Releases Security Advisory for Word Vulnerabilityadded July 9, 2008 at 09:01 am
Microsoft has released a Security Advisory to address a vulnerability in Microsoft Word. The advisory indicates that this vulnerability affects Microsoft Office Word 2002 Service Pack 3. By convincing a user to open a specially crafted Word file, a remote attacker may be able to execute arbitrary code or cause a denial-of-service condition. Additionally, the advisory indicates that Microsoft is aware of limited, targeted attacks attempting to exploit this vulnerability. DNS Implementations Vulnerable to Cache Poisoningadded July 8, 2008 at 03:37 pm
US-CERT is aware of deficiencies in the DNS protocol. Implementations of this protocol may leave the affected system vulnerable to DNS cache poisoning attacks. If an attacker can successfully conduct a cache poisoning attack, they may be able to cause a nameserver's clients to contact the incorrect, and possibly malicious, hosts for particular services. This may allow an attacker to obtain sensitive information or mislead users into believing they are visiting a legitimate website. Microsoft Releases July Security Bulletinadded July 8, 2008 at 01:27 pm
Microsoft has released updates to address vulnerabilities in Microsoft Windows and SQL Server as part of the Microsoft Security Bulletin Summary for July 2008. These vulnerabilities may allow an attacker to execute arbitrary code, redirect network traffic to a malicious location, or access the system with elevated privileges. Microsoft Releases Security Advisory For Snapshot Viewer ActiveX Controladded July 7, 2008 at 01:49 pm
Microsoft has released a Security Advisory to address a vulnerability in a Microsoft Access ActiveX control. By convincing a user to visit a specially crafted web page, a remote, unauthenticated attacker may be able to execute arbitrary code. The Advisory also indicates that the vulnerability is being used in active, targeted attacks. Microsoft Releases Advanced Notification for July Security Bulletinadded July 3, 2008 at 02:41 pm
Microsoft has issued a Security Bulletin Advance Notification indicating that its July release cycle will contain four bulletins which all will have a severity rating of Important. The notification states that these Important bulletins are for Microsoft Windows, Microsoft SQL Server, and Microsoft Exchange Server. Release of these bulletins is scheduled for Tuesday, July 8. Mozilla Releases Firefox 2.0.0.15added July 2, 2008 at 09:42 am
Mozilla has released Firefox 2.0.0.15. This version addresses multiple vulnerabilities that may allow an attacker to execute arbitrary code, conduct cross-site scripting attacks, upload arbitrary files, or escalate privileges. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities also affect Thunderbird and SeaMonkey.
Apple Releases Security Updatesadded July 1, 2008 at 09:30 am
Apple has released Mac OS X v10.5.4, Security Update 2008-004, and Safari 3.1.2 for Mac OS X 10.4.11 to address multiple vulnerabilities. These vulnerabilities affect a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code, bypass security restrictions, or cause a denial-of-service condition. Microsoft Releases Security Advisoryadded June 30, 2008 at 07:26 pm
Microsoft has released a Security Advisory to address public reports of the Microsoft Windows Server Update Services failing to properly deploy updates within certain environments. Environments that rely on this service for updates may be unable to deploy updates to client systems, some of which may be security related. |
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more