Home page logo
  • Nmap Security Scanner
  • Security Lists
  • Security Tools
  • Site News
  • Advertising
  • About/Contact
  • Sponsors:





/
cert logo
CERT Advisories Mailing List

The Computer Emergency Response Team has been responding to security incidents and sharing vulnerability information since the Morris Worm hit in 1986. This archive combines their technical security alerts, tips, and current activity lists.

List Archives

201264 posts
2011218 posts
2010282 posts
200983 posts
200836 posts
200742 posts
200640 posts
200521 posts
200431 posts
200336 posts
200244 posts
200136 posts

Latest Posts

Current Activity - Apple Releases QuickTime 7.7.2 Current Activity (May 16)
US-CERT Current Activity

Apple Releases QuickTime 7.7.2

Original release date: Wednesday, May 16, 2012 at 10:23 am
Last revised: Wednesday, May 16, 2012 at 10:23 am

Apple has released QuickTime 7.7.2 to address multiple vulnerabilities.
These vulnerabilities may allow an attacker to execute arbitrary code or
cause a denial-of-service condition.

US-CERT encourages users and administrators to review Apple Support
Article HT5261 and apply any...

Current Activity - Google Releases Google Chrome 19 Current Activity (May 15)
US-CERT Current Activity

Google Releases Google Chrome 19

Original release date: Tuesday, May 15, 2012 at 2:13 pm
Last revised: Tuesday, May 15, 2012 at 2:13 pm

Google has released Google Chrome 19 for Linux, Mac, Windows, and Chrome
Frame to address multiple vulnerabilities. These vulnerabilities may
allow an attacker to execute arbitrary code or cause a denial-of-service
condition.

US-CERT encourages users and administrators to review the...

Current Activity - Apple Releases Multiple Security Updates Current Activity (May 10)
US-CERT Current Activity

Apple Releases Multiple Security Updates

Original release date: Thursday, May 10, 2012 at 2:30 pm
Last revised: Thursday, May 10, 2012 at 2:30 pm

Apple has released security updates for Apple OS X and Safari to address
multiple vulnerabilities for the following products:

* Safari 5.1.7 for Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion
Server v10.7.4, OS X Lion v10.7.4, Windows 7, Vista, XP SP2 or later
* OS X...

Alert TA12-129A -- Microsoft Updates for Multiple Vulnerabilities US-CERT Alerts (May 08)
National Cyber Alert System

Technical Cyber Security Alert TA12-129A

Microsoft Updates for Multiple Vulnerabilities

Original release date: May 08, 2012
Last revised: --
Source: US-CERT

Systems Affected

* Microsoft Windows
* Microsoft .NET Framework
* Microsoft Office
* Microsoft Silverlight

Overview

Select Microsoft software products contain multiple
vulnerabilities....

Current Activity - Microsoft Releases May Security Bulletin Current Activity (May 08)
US-CERT Current Activity

Microsoft Releases May Security Bulletin

Original release date: Tuesday, May 8, 2012 at 03:38 pm
Last revised: Tuesday, May 8, 2012 at 03:38 pm

Microsoft has released updates to address vulnerabilities in Microsoft
Windows, Office, .NET Framework, and Silverlight as part of the
Microsoft Security Bulletin Summary for May 2012. These vulnerabilities
may allow an attacker to execute arbitrary code or operate with...

Current Activity - Adobe Releases Security Advisory for Adobe Flash Player Current Activity (May 04)
US-CERT Current Activity

Adobe Releases Security Advisory for Adobe Flash Player

Original release date: Friday, May 4, 2012 at 11:06 am
Last revised: Friday, May 4, 2012 at 11:06 am

Adobe has released a Security Advisory for Adobe Flash Player to address
a vulnerability affecting the following software versions:

* Adobe Flash Player 11.2.202.233 and earlier versions for Windows,
Macintosh, and Linux operating systems * Adobe Flash Player...

Current Activity - Microsoft Releases Advance Notification for May Security Bulletin Current Activity (May 03)
US-CERT Current Activity

Microsoft Releases Advance Notification for May Security Bulletin

Original release date: Thursday, May 3, 2012 at 03:49 pm
Last revised: Thursday, May 3, 2012 at 03:49 pm

Microsoft has issued a Security Bulletin Advance Notification indicating
that its May release will contain seven bulletins. These bulletins will
have the severity ratings of critical and important and will be for
Microsoft Windows, Office, .NET...

Current Activity - Google Releases Chrome 18.0.1025.168 Current Activity (May 01)
US-CERT Current Activity

Google Releases Chrome 18.0.1025.168

Original release date: Tuesday, May 1, 2012 at 09:58 am
Last revised: Tuesday, May 1, 2012 at 09:58 am

Google has released Chrome 18.0.1025.168 for Linux, Macintosh, Windows,
and Google Chrome Frame to address multiple vulnerabilities. These
vulnerabilities may allow an attacker to execute arbitrary code or cause
a denial-of-service condition.

US-CERT encourages users and...

Current Activity - RuggedCom Rugged Operating System Vulnerability Current Activity (Apr 24)
US-CERT Current Activity

RuggedCom Rugged Operating System Vulnerability

Original release date: Tuesday, April 24, 2012 at 4:14 pm
Last revised: Tuesday, April 24, 2012 at 4:14 pm

RuggedCom Rugged Operating System (ROS), used in RuggedCom network
infrastructure devices, contains a hard-coded user account with a
predictable password.

This user account cannot be manually disabled. An attacker who
successfully guesses the password may be able to...

Current Activity - DNSChanger Malware Current Activity (Apr 24)
US-CERT Current Activity

DNSChanger Malware

Original release date: Tuesday, April 24, 2012 at 2:20 pm
Last revised: Tuesday, April 24, 2012 at 2:20 pm

US-CERT encourages users and administrators to ensure their systems are
not infected with the DNSChanger malware by utilizing tools and
resources available at the DNS Changer Working Group (DCWG) website.
Computers testing positive for infection of DNSChanger malware will need
to be cleaned of...

Current Activity - Oracle Releases Critical Patch Update for April 2012 Current Activity (Apr 18)
US-CERT Current Activity

Oracle Releases Critical Patch Update for April 2012

Original release date: Wednesday, April 18, 2012 at 9:55 am
Last revised: Wednesday, April 18, 2012 at 9:55 am

Oracle has released its Critical Patch Update for April 2012 to address
88 vulnerabilities across multiple products. This updates contains the
following security fixes:

* 6 for Oracle Database Server * 11 for Oracle Fusion Middleware * 6
for Oracle...

Current Activity - Apple Releases Flashback Malware Security Updates Current Activity (Apr 16)
US-CERT Current Activity

Apple Releases Flashback Malware Security Updates

Original release date: Monday, April 16, 2012 at 3:11 pm
Last revised: Monday, April 16, 2012 at 3:11 pm

Apple has released security updates to address Flashback malware in the
following products:

* OS X Lion v10.7.3 * OS X Lion Server v10.7.3 * Mac OS X v10.6.8 * Mac
OS X Server v10.6.8

Apple has released a malware removal tool for the most common variant of
the...

Current Activity - HP ProCurve 5400 zl Switches Security Bulletin Current Activity (Apr 12)
US-CERT Current Activity

HP ProCurve 5400 zl Switches Security Bulletin

Original release date: Thursday, April 12, 2012 at 2:51 pm
Last revised: Thursday, April 12, 2012 at 2:51 pm

Hewlett-Packard (HP) has released a security bulletin to address a
security vulnerability affecting HP 5400 zl series switches purchased
after April 30, 2011. These switches contain a compact flash card that
may be infected with malware.

US-CERT encourages users...

Current Activity - Samba Releases Updates for 3.0.x - 3.6.3 Current Activity (Apr 11)
US-CERT Current Activity

Samba Releases Updates for 3.0.x - 3.6.3

Original release date: Wednesday, April 11, 2012 at 11:00 am
Last revised: Wednesday, April 11, 2012 at 11:00 am

Samba has released an update to address a vulnerability in Samba
versions 3.6.3 and all previous versions. Exploitation of this
vulnerability may allow a remote attacker to use anonymous connections
to execute arbitrary code with root privileges.

US-CERT encourages...

Alert TA12-101B -- Adobe Reader and Acrobat Security Updates and Architectural Improvements US-CERT Alerts (Apr 11)
National Cyber Awareness System

Technical Cyber Security Alert TA12-101B

Adobe Reader and Acrobat Security Updates and Architectural Improvements

Original release date: April 10, 2012
Last revised: --
Source: US-CERT

Systems Affected

* Adobe Reader X (10.1.2) and earlier 10.x versions for Windows and Macintosh
* Adobe Reader 9.5 and earlier 9.x versions for Windows, Macintosh, and UNIX
* Adobe...

More Lists

Dozens of other network security lists are archived at SecLists.Org.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]