mardi 11 décembre 2018    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Security Updates Available for Adobe Flash Player [1] (CERT-EU Security Advisory 2013-0007)

Adobe has released security updates for Adobe Flash Player 11.5.502.135 and earlier versions for Windows, Adobe Flash Player 11.5.502.136 and earlier versions for Macintosh, Adobe Flash Player 11.2.202.258 and earlier versions for Linux, Adobe...
Auteur: Cert EU

Multiple Vulnerabilities in Adobe ColdFusion [1] (CERT-EU Security Advisory 2013-0006)

Adobe has identified three vulnerabilities affecting ColdFusion for Windows, Macintosh and UNIX: CVE-2013-0625 affects ColdFusion 10, 9.0.2, 9.0.1 and 9.0, and could permit an unauthorized user to remotely circumvent authentication controls,...
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2013-0004)

CERT-EU has received notification from Microsoft on a number of new security updates which have been released on the 8 January 2013.
Auteur: Cert EU

VMware security updates for vCSA and ESXi [1] (CERT-EU Security Advisory 2013-0005

VMware has updated vCenter Server Appliance (vCSA) and ESX to address multiple security vulnerabilities.
Auteur: Cert EU

Microsoft Security Updates - Advance Notification (CERT-EU Security Advisory 2013-0003)

CERT-EU has received advance notification from Microsoft on a number of new security updates which are planned for release on January 08, 2013. This advisory is intended to help you plan for the deployment of these security updates more...
Auteur: Cert EU

Fraudulent certificates issued by Trusted CA impact on Microsoft products and other Browser products (CERT-EU Security Advisory 2013-0001)

CERT-EU has been made aware of a security issue related to certificates issued by TURKTRUST Inc. TURKTRUST Inc is certificate provider which CA is included in several trusted CA databases used by products like browsers. Consequently, fraudulent...
Auteur: Cert EU

Microsoft Security Update (CERT-EU Security Advisory 2012-0150)

CERT-EU has received notification from Microsoft on an update KB2753842 to resolve an issue with OpenType fonts not properly rendering after the original update was installed. Customers who have successfully installed the original KB2753842...
Auteur: Cert EU

JBoss Enterprise SOA Platform 5.3.0 update [1] (CERT-EU Security Advisory 2012-0149)

JBoss Enterprise SOA Platform 5.3.0 roll up patch 2, which fixes one security issue and various bugs, is now available from the Red Hat Customer Portal.
Auteur: Cert EU

JBoss Enterprise Application Platform 6.0.1 update for RHEL 5 and RHEL 6 [1] (CERT-EU Security Advisory 2012-0148)

Updated JBoss Enterprise Application Platform 6.0.1 packages that fix multiple security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6. The Red Hat Security Response Team...
Auteur: Cert EU

JBoss Enterprise BRMS Platform 5.3.1 update (CERT-EU Security Advisory 2012-0147)

JBoss Enterprise BRMS Platform 5.3.1, which fixes one security issue, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal.
Auteur: Cert EU

JBoss Enterprise BRMS Platform 5.3.0 security update (CERT-EU Security Advisory 2012-0145)

An update for JBoss Enterprise BRMS Platform 5.3.0 that fixes one security issue is now available from the Red Hat Customer Portal.
Auteur: Cert EU

VMware View Server directory traversal (CERT-EU Security Advisory 2012-0144)

VMware View releases address a critical directory traversal vulnerability in the View Connection Server and View Security Server.
Auteur: Cert EU

Adobe Hotfix available for ColdFusion 10 and earlier (CERT-EU Security Advisory 2012-0143)

Adobe has released a security hotfix for ColdFusion 10 and earlier versions for Windows, Macintosh and UNIX. This hotfix resolves a vulnerability which could result in a sandbox permissions violation in a shared hosting environment. Adobe...
Auteur: Cert EU

Security Updates Available for Adobe Flash Player (CERT-EU Security Advisory 2012-0142)

Adobe has released security updates for Adobe Flash Player 11.5.502.110 and earlier versions for Windows and Macintosh, Adobe Flash Player 11.2.202.251 and earlier versions for Linux, Adobe Flash Player 11.1.115.27 and earlier versions for...
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2012-0141)

CERT-EU has received notification from Microsoft on a number of new security updates which have been released on the 12 December 2012.
Auteur: Cert EU

Microsoft Security Updates - Advance Notification (CERT-EU Security Advisory 2012-0140)

CERT-EU has received advance notification from Microsoft on a number of new security updates which are planned for release on December 11, 2012.
Auteur: Cert EU

Denial of Service on Bind BIND nameservers using DNS64 (CERT-EU Security Advisory 2012-0139)

A nameserver can be crashed with a require assertion failure if a client sends a crafted query which can be resulted in a DoS.
Auteur: Cert EU

Samsung and some Dell printers, Remote Disclosure of Information. (CERT-EU security Advisory 2012-0138)

Samsung printers and some Dell printers manufactured for Samsung contain and snmp account that could be used to get privileged access to the devices.
Auteur: Cert EU

PHP 5.4.9 and PHP 5.3.19 released, multiple vulnerabilities fixed [1] (CERT-EU Security Advisory 2012-0137)

The PHP development team announces the immediate availability of PHP 5.4.9 and PHP 5.3.19. These releases fix over 15 bugs. All users of PHP are encouraged to upgrade to PHP 5.4.9, or at least 5.3.19.
Auteur: Cert EU

Cisco Secure Access Control System TACACS+ Authentication Bypass Vulnerability [1] (CERT-EU Security Advisory 2012-0136)

Cisco Secure Access Control System (ACS) contains a vulnerability that could allow an unauthenticated, remote attacker to bypass TACACS+ based authentication service offered by the affected product. CVE-2012-5424 CVSS Base Score: 5.0...
Auteur: Cert EU

Cisco IronPort Appliances Sophos Anti-Virus Vulnerabilities [1] (CERT-EU Security Advisory 2012-0135)

Cisco IronPort Email Security Appliances (ESA) and Cisco IronPort Web Security Appliances (WSA) include versions of Sophos Anti-Virus that contain multiple vulnerabilities that could allow an unauthenticated, remote attacker to gain control of...
Auteur: Cert EU

Multiple vulnerabilities in Mozilla products (CERT-EU Security Advisory 2012-0134)

Several vulnerabilities have been detected in Mozilla products. Some of the ones reported below might already have been covered by previous CERT-EU advisories, but are mentioned for the sake of completeness. CVE-2012-5830, CVE-2012-5833,...
Auteur: Cert EU

Apache Tomcat Denial of Service & DIGEST authentication weaknesses (CERT-EU Security Advisory 2012-0133)

The Apache Tomcat security team issued new releases for Apache Tomcat to fix two security issues: Denial of Service for Tomcat 6.x and DIGEST authentication weaknesses for Tomcat 7.x and 5.5.x. CVE numbers: CVE-2012-2733, CVE-2012-3439
Auteur: Cert EU

HP Integrated Lights-Out iLO3 and iLO4, Remote Disclosure of Information [1] (CERT-EU Security Advisory 2012-0132)

A potential security vulnerability has been identified with HP Integrated Lights-Out iLO3 and iLO4. The vulnerability could be remotely exploited resulting in a disclosure of information. CVE number: CVE-2012-3271 CVSS Score: 9.3...
Auteur: Cert EU

Hotfix available for ColdFusion 10 for Windows [1] (CERT-EU Security Advisory 2012-0131)

Adobe has released a security hotfix for ColdFusion 10 Update 1 and above for Windows. This hotfix resolves a vulnerability affecting ColdFusion on Windows Internet Information Services (IIS), which could result in a Denial of Service condition....
Auteur: Cert EU
First172173174175176177178179180181Last

Événements SSI

FIC

Le 11ème Forum International de la Cybersécurité occupe les 22 et 23 janvier 2019 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RENCONTRES AMRAE

Les 27èmes Rencontres de l'AMRAE (Association française des professionnels de la gestion des risques et des assurances) , le congrès annuel de référence des métiers du risque et des assurances, ont lieu du 6 au 8 février 2019 à Deauville (Centre International) sur le thème : "Le risque au coeur de la transformation". Organisées par l'AMRAE.

ACCESSECURITY

AccesSecurity, salon euro-méditerranéen de la sécurité globale, se tient à Marseille (Chanot) les 6 et 7 mars 2019. Organisé par Safim.

IT & IT SECURITY MEETINGS

IT & IT Security Meetings, «salon des réseaux, du cloud, de la mobilité et de la sécurité informatique», se tient à Cannes, Palais des Festivals et des Congrès du 19 au 21 mars 2019. Organisé par Weyou Group.

RSS