Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

JBoss Enterprise Web Platform 5.2.0 update (CERT-EU Security Advisory 2013-0014)

JBoss Enterprise Web Platform 5.2.0, which fixes multiple security issues, various bugs, and adds several enhancements, is now available from the Red Hat Customer Portal.
Auteur: Cert EU

Oracle Critical Patch Update - Junuary 2013 (CERT-EU Security Advisory 2013-0013)

The Critical Patch Update for Junuary 2013 [1] were released. Oracle strongly recommends applying the patches as soon as possible. Please note that Sun products are included in this Critical Patch Update. Be aware that Sun and MySQL patches have...
Auteur: Cert EU

UPDATED - Oracle Java 0-day Vulnerability Exploited in the Wild (CERT-EU Security Advisory 2013-0012)

This Security Alert addresses security issues CVE-2013-0422 (US-CERT Alert TA13-010A - Oracle Java 7 Security Manager Bypass Vulnerability) and another vulnerability possibly related to "permissions of certain Java classes," as exploited in the...
Auteur: Cert EU

UPDATED - Microsoft Internet Explorer Security Advisory (CERT-EU Security Advisory 2013-0002)

Microsoft is investigating public reports of vulnerability in Internet Explorer 6, Internet Explorer 7, and Internet Explorer 8. Internet Explorer 9 and Internet Explorer 10 are not affected by the vulnerability. Microsoft is aware of targeted...
Auteur: Cert EU

Cisco Prime LAN Management Solution Command Execution Vulnerability [1] (CERT-EU Security Advisory 2013-0011)

Cisco Prime LAN Management Solution (LMS) Virtual Appliance contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary commands with the privileges of the root user. The vulnerability is due to improper...
Auteur: Cert EU

Cisco Unified IP Phone Local Kernel System Call Input Validation Vulnerability [1] (CERT-EU Security Advisory 2013-0010)

Cisco Unified IP Phones 7900 Series versions 9.3(1)SR1 and prior contain an arbitrary code execution vulnerability that could allow a local attacker to execute code or modify arbitrary memory with elevated privileges.
Auteur: Cert EU

Several vulnerabilities in Firefox, Thunderbird and Seamonkey (CERT-EU Security Advisory 2013-0009)

Mozilla developers identified and fixed several vulnerabilities [1-20]
Auteur: Cert EU

Security updates for Adobe Reader and Acrobat [1] (CERT-EU Security Advisory 2013-0008)

Adobe has released security updates for Adobe Reader and Acrobat XI (11.0.0) and earlier versions for Windows and Macintosh, and Adobe Reader 9.5.1 and earlier 9.x versions for Linux. These updates address vulnerabilities that could cause a crash...
Auteur: Cert EU

Security Updates Available for Adobe Flash Player [1] (CERT-EU Security Advisory 2013-0007)

Adobe has released security updates for Adobe Flash Player 11.5.502.135 and earlier versions for Windows, Adobe Flash Player 11.5.502.136 and earlier versions for Macintosh, Adobe Flash Player 11.2.202.258 and earlier versions for Linux, Adobe...
Auteur: Cert EU

Multiple Vulnerabilities in Adobe ColdFusion [1] (CERT-EU Security Advisory 2013-0006)

Adobe has identified three vulnerabilities affecting ColdFusion for Windows, Macintosh and UNIX: CVE-2013-0625 affects ColdFusion 10, 9.0.2, 9.0.1 and 9.0, and could permit an unauthorized user to remotely circumvent authentication controls,...
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2013-0004)

CERT-EU has received notification from Microsoft on a number of new security updates which have been released on the 8 January 2013.
Auteur: Cert EU

VMware security updates for vCSA and ESXi [1] (CERT-EU Security Advisory 2013-0005

VMware has updated vCenter Server Appliance (vCSA) and ESX to address multiple security vulnerabilities.
Auteur: Cert EU

Microsoft Security Updates - Advance Notification (CERT-EU Security Advisory 2013-0003)

CERT-EU has received advance notification from Microsoft on a number of new security updates which are planned for release on January 08, 2013. This advisory is intended to help you plan for the deployment of these security updates more...
Auteur: Cert EU

Fraudulent certificates issued by Trusted CA impact on Microsoft products and other Browser products (CERT-EU Security Advisory 2013-0001)

CERT-EU has been made aware of a security issue related to certificates issued by TURKTRUST Inc. TURKTRUST Inc is certificate provider which CA is included in several trusted CA databases used by products like browsers. Consequently, fraudulent...
Auteur: Cert EU

Microsoft Security Update (CERT-EU Security Advisory 2012-0150)

CERT-EU has received notification from Microsoft on an update KB2753842 to resolve an issue with OpenType fonts not properly rendering after the original update was installed. Customers who have successfully installed the original KB2753842...
Auteur: Cert EU

JBoss Enterprise SOA Platform 5.3.0 update [1] (CERT-EU Security Advisory 2012-0149)

JBoss Enterprise SOA Platform 5.3.0 roll up patch 2, which fixes one security issue and various bugs, is now available from the Red Hat Customer Portal.
Auteur: Cert EU

JBoss Enterprise Application Platform 6.0.1 update for RHEL 5 and RHEL 6 [1] (CERT-EU Security Advisory 2012-0148)

Updated JBoss Enterprise Application Platform 6.0.1 packages that fix multiple security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6. The Red Hat Security Response Team...
Auteur: Cert EU

JBoss Enterprise BRMS Platform 5.3.1 update (CERT-EU Security Advisory 2012-0147)

JBoss Enterprise BRMS Platform 5.3.1, which fixes one security issue, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal.
Auteur: Cert EU

JBoss Enterprise BRMS Platform 5.3.0 security update (CERT-EU Security Advisory 2012-0145)

An update for JBoss Enterprise BRMS Platform 5.3.0 that fixes one security issue is now available from the Red Hat Customer Portal.
Auteur: Cert EU

VMware View Server directory traversal (CERT-EU Security Advisory 2012-0144)

VMware View releases address a critical directory traversal vulnerability in the View Connection Server and View Security Server.
Auteur: Cert EU

Adobe Hotfix available for ColdFusion 10 and earlier (CERT-EU Security Advisory 2012-0143)

Adobe has released a security hotfix for ColdFusion 10 and earlier versions for Windows, Macintosh and UNIX. This hotfix resolves a vulnerability which could result in a sandbox permissions violation in a shared hosting environment. Adobe...
Auteur: Cert EU

Security Updates Available for Adobe Flash Player (CERT-EU Security Advisory 2012-0142)

Adobe has released security updates for Adobe Flash Player 11.5.502.110 and earlier versions for Windows and Macintosh, Adobe Flash Player 11.2.202.251 and earlier versions for Linux, Adobe Flash Player 11.1.115.27 and earlier versions for...
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2012-0141)

CERT-EU has received notification from Microsoft on a number of new security updates which have been released on the 12 December 2012.
Auteur: Cert EU

Microsoft Security Updates - Advance Notification (CERT-EU Security Advisory 2012-0140)

CERT-EU has received advance notification from Microsoft on a number of new security updates which are planned for release on December 11, 2012.
Auteur: Cert EU

Denial of Service on Bind BIND nameservers using DNS64 (CERT-EU Security Advisory 2012-0139)

A nameserver can be crashed with a require assertion failure if a client sends a crafted query which can be resulted in a DoS.
Auteur: Cert EU
First891011121314151617Last

Événements SSI