samedi 30 mai 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Multiple Vulnerabilities in Cisco Wireless LAN Controllers [1] (CERT-EU Security Advisory 2014-027)

The Cisco Wireless LAN Controller (WLC) product family is affected by the following vulnerabilities
Auteur: Cert EU

JBoss Enterprice Aplication Platform update [1] (CERT-EU Security Advisory 2014-026)

An update for Red Hat JBoss Enterprise Application Platform 6.2.1 is now available from the Red Hat Customer Portal.
Auteur: Cert EU

SSL/TSL implementation security Issues [1] (CERT-EU Security Advisory 2014-025)

Recently have been published a couple of bugs in ssl/tsl protocol from Apple [1] and GNU [2].
Auteur: Cert EU

SOHO routers vulnerabilities leading to man-in-the-middle attack [1] (CERT-EU Security Advisory 2014-024)

Different vulnerabilities and default configuration in several brands of SOHO routers allowed dns misconfiguration in hundreds of thousands of devices.
Auteur: Cert EU

Cisco Prime Infrastructure Command Execution Vulnerability [1] (CERT-EU Security Advisory 2014-023)

A vulnerability in Cisco Prime Infrastructure could allow an authenticated, remote attacker to execute arbitrary commands with root-level privileges.
Auteur: Cert EU

UPDATED Bios update for Hewlett Packard server products (CERT-EU Security Advisory 2014-008)

There is a Bios update for HP Proliant G7 server.
Auteur: Cert EU

SSL Vulnerability in iOS and OS X [1] (CERT-EU Security Advisory 2014-022)

Due to a flaw in authentication logic on iOS and OS X platforms, an attacker can bypass SSL/TLS verification routines upon the initial connection handshake.
Auteur: Cert EU

Microsoft Security Advisory [1] (CERT-EU Security Advisory 2014-021)

Microsoft is aware of limited, targeted attacks that attempt to exploit a vulnerability in Internet Explorer 10.
Auteur: Cert EU

Microsoft Security Advisory related to Adobe Flash Player [1] (CERT-EU Security Advisory 2014-020)

Microsoft is announcing the availability of an update for Adobe Flash Player in Internet Explorer on all supported editions of Windows 8, Windows Server 2012, Windows RT, Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1.
Auteur: Cert EU

Security updates available for Adobe Flash Player (CERT-EU Security Advisory 2014-019)

Adobe has released security updates for Adobe Flash Player 12.0.0.44 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.336 and earlier versions for Linux.
Auteur: Cert EU

JBoss Enterprice Aplication Platform update [1] (CERT-EU Security Advisory 2014-018)

An update for Red Hat JBoss Enterprise Application Platform 6.2.0, which fixes three security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal.
Auteur: Cert EU

Title: Cisco Firewall Services Module Cut-Through Proxy Denial of Service Vulnerability [1] (CERT-EU Security Advisory 2014-017)

Cisco Firewall Services Module (FWSM) Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a reload of an affected system.
Auteur: Cert EU

Multiple Vulnerabilities in Cisco IPS Software [1] (CERT-EU Security Advisory 2014-016)

Cisco Intrusion Prevention System (IPS) Software is affected by the following vulnerabilities
Auteur: Cert EU

Cisco UCS Director Default Credentials Vulnerability [1] (CERT-EU Security Advisory 2014-015)

A vulnerability in the Cisco Unified SIP Phone 3905 could allow an unauthenticated, remote attacker to gain root-level access to an affected device.
Auteur: Cert EU

Unauthorized Access Vulnerability in Cisco Unified SIP Phone 3905 [1] (CERT-EU Security Advisory 2014-014)

A vulnerability in the Cisco Unified SIP Phone 3905 could allow an unauthenticated, remote attacker to gain root-level access to an affected device.
Auteur: Cert EU

Man-in-the-Middle Attack Against Email Synchronization (CERT-EU Security Advisory 2014-013)

The attack consists in spoofing a SSID of a WiFi network to which devices try to connect (most devices actively advertise SSIDs of all networks known to them). Once a device connects to such network and tries to synchronize e-mails, a malicious...
Auteur: Cert EU

Security updates available for Adobe Flash Player (CERT-EU Security Advisory 2014-012)

Adobe has released security updates for Adobe Flash Player 12.0.0.43 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.335 and earlier versions for Linux. These updates address a critical vulnerability that could...
Auteur: Cert EU

Security update available for Adobe Shockwave Player (CERT-EU Security Advisory 2014-011)

Adobe has released a security update for Adobe Shockwave Player 12.0.7.148 and earlier versions on the Windows and Macintosh operating systems. This update addresses critical vulnerabilities that could potentially allow an attacker to remotely...
Auteur: Cert EU

Microsoft Security Updates (CERT-EU Security Advisory 2014-009)

Microsoft has published on a number of new security updates. This advisory is intended to help you plan for the deployment of these security updates more effectively.
Auteur: Cert EU

Critical Vulnerability in MediaWiki Platform (CERT-EU Security Advisory 2014-010)

Researchers have discovered a critical vulnerability in the popular MediaWiki Web platform, which is used to run Wikipedia and tens of thousands of other wiki sites around the world. This vulnerability allows an attacker to perform remote code...
Auteur: Cert EU

Denial of Service on Bind BIND nameservers (CERT-EU Security Advisory 2014-007)

Because of a defect in handling queries for NSEC3-signed zones, BIND can crash with an "INSIST" failure in name.c when processing queries possessing certain properties. By exploiting this defect an attacker deliberately constructing a query with...
Auteur: Cert EU

VMware multiple vulnerabilities (CERT-EU Security Advisory 2014-006)

VMware Workstation, Player, Fusion, ESXi, ESX and vCloud Director address several security issues: VMware ESXi and ESX NFC NULL pointer dereference (CVE-2014-1207).
Auteur: Cert EU

Multiple Bugfixes in PHP (CERT-EU Security Advisory 2014-005)

The PHP development team announces the immediate availability of PHP 5.5.8. About 15 bugs were fixed. The PHP development team announces the immediate availability of PHP 5.4.20. About 30 bugs were fixed.
Auteur: Cert EU

Multiple Vulnerabilities in Cisco Secure Access Control System (CERT-EU Security Advisory 2014-004)

Cisco Secure Access Control System (ACS) is affected by the following vulnerabilities: -Cisco Secure ACS RMI Privilege Escalation Vulernability -Cisco Secure ACS RMI Unauthenticated User Access Vulnerability -Cisco Secure ACS Operating System...
Auteur: Cert EU

Oracle Critical Patch Update Advisory of January 2014 (CERT-EU Security Advisory 2014-003)

Oracle Critical Patch Update Advisory of January 2014 contains 144 new security fixes across the product families.
Auteur: Cert EU
First3456789101112Last

Événements SSI