US-CERT Current ActivityThe US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.Multiple Web Browsers Affected by Clickjacking- September 26, 2008 US-CERT is aware of public reports of a new cross-browser exploit technique called "Clickjacking." According to one of the reports, Clickjacking gives an attacker the ability to trick a user into clicking on something only barely or momentarily noticeable. Therefore, if a user clicks on a web page, they may actually be clicking on content from another page. A separate report indicates that this flaw affects most web browsers and that no fix is available, but that disabling browser scripting and.http://www.us-cert.gov/current/index.html#multiple_web_browsers_affected_by Adobe PDF Exploit Toolkits Circulating- September 25, 2008 US-CERT is aware of public reports of improved attack toolkits for exploiting vulnerabilities in PDF reader software. Another report offering additional information is publicly available.US-CERT encourages users to do the following to help mitigate the risks:Do not open untrusted files or files of unknown origin.Install antivirus software, and keep its virus signature files up to date.Regularly apply software patches and updates as supplied by the vendor.http://www.us-cert.gov/current/index.html#adobe_pdf_exploit_toolkits_circulating Apple Releases Java Updates for Mac OS X 10.4 and 10.5- September 25, 2008 Apple has released updates for Java for Mac OS X 10.4 and 10.5 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code.US-CERT encourages users to review Apple Article HT3178 and HT3179 and apply any necessary updates to help mitigate the risks.http://www.us-cert.gov/current/index.html#apple_releases_java_updates_for Veritas NetBackup ServerEnterprise Server Vulnerabilities- September 25, 2008 Symantec has released a Security Advisory to address multiple vulnerabilities in the Veritas NetBackup ServerEnterprise Server. These vulnerabilities are due to stack-based buffer overflow conditions and unsafe method calls within an ActiveX control that is part of the scheduler component. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code.US-CERT encourages users to review the Symantec Security Advisory and apply any necessary updates to help mitigate the..http://www.us-cert.gov/current/index.html#veritas_netbackup_server_enterprise_server Cisco Releases Security Alerts- September 24, 2008 Cisco has released multiple security alerts to address vulnerabilities in the Unified Communications Manager and IOS. These vulnerabilities may allow a remote unauthenticated attacker to cause a denial-of-service condition, obtain sensitive information, or operate with escalated privileges.US-CERT encourages users and administrators to review the following Cisco Alerts and apply any necessary updates to help mitigate the risks.Cisco Unified Communications Manager Session Initiation Protocol...http://www.us-cert.gov/current/index.html#cisco_releases_security_alerts Mozilla Releases Firefox 3.0.2- September 24, 2008 Mozilla has released Firefox 3.0.2 to address multiple vulnerabilities. The impacts of these vulnerabilities include arbitrary code execution, enabling cross-site scripting, privilege escalation, information disclosure, and denial of service. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities may also affect Thunderbird and SeaMonkey. US-CERT encourages users to do the following to help mitigate the risks:Review the Mozilla Foundation Security...http://www.us-cert.gov/current/index.html#mozilla_releases_updates_to_vulnerabilites VMware Releases Security Advisory VMSA-0008-0015- September 19, 2008 VMware has released a Security Advisory indicating it has updated the ESXi and ESX 3.5 packages to address a vulnerability in "openwsman". This vulnerability is due to several buffer overflow conditions in the handling of HTTP basic authentication headers. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on the host running ESXi or ESX.US-CERT encourages users and administrators to review VMware Security Advisory VMSA-0008-0015 and apply..http://www.us-cert.gov/current/index.html#vmware_releases_security_advisory_vmsa Adobe Releases Security Advisory for Mac Illustrator- September 18, 2008 Adobe has released a Security Advisory to alert users of potential vulnerabilities affecting the Macintosh version of Illustrator CS2. By convincing a user to open a malicious Adobe Illustrator file, an attacker may be able to execute arbitrary code.In the advisory, Adobe recommends that users exercise caution when receiving unsolicited or suspicious files. Adobe also states that they are currently unaware of any public exploitation of these vulnerabilities. US-CERT will provide more...http://www.us-cert.gov/current/index.html#adobe_releases_security_advisory_for Fake Antivirus Software Circulating- September 16, 2008 US-CERT is aware of public reports indicating an increase in the instances of fake antivirus software circulating. These software applications are malicious code, not legitimate antivirus applications. These instances of malicious code are noted as being distributed through spam email messages containing malicious links, instant messages containing malicious links, private messages on social networking sites, infection from other malware, and from visiting compromised websites. Quite often,...http://www.us-cert.gov/current/index.html#fake_antivirus_software_circulating Apple Releases Security Updates for Multiple Vulnerabilities- September 16, 2008 Apple has released Security Update 2008-006 and Mac OS X v10.5.5 to address multiple vulnerabilities in Mac OS X and related products. The impacts of these vulnerabilities include arbitrary code execution, information disclosure, denial of service, privilege escalation, or DNS cache poisoning.US-CERT encourages users to review Apple article HT3137 and apply the appropriate updates as soon as possible.US-CERT will provide additional details as the they become available.http://www.us-cert.gov/current/index.html#apple_releases_security_updates_for1 |