DarkFiber Consulting – IT Managed Services

Apple Releases Security Update 2010-004 and Mac OS X v10.6.4

June 23rd, 2010 . by DarkFiber Consulting

Apple has released Security Update 2010-004 and Mac OS X v10.6.4 to address multiple vulnerabilities that affect a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code,  cause a denial-of-service condition, operate with elevated privileges, conduct man-in-the-middle attacks, alter configuration settings, or conduct cross-site scripting attacks.

Note that these Apple updates include Adobe Flash Player plugin version 10.0.45.2, which contains vulnerabilities previously identified in Adobe Security Bulletin APSB10-14. The Adobe Product Security Incident Response Team (PSIRT) has published a blog entry recommending that Mac OS X users upgrade to the latest version of the Flash Player (version 10.1.53.64) after applying these Apple updates.

DarkFiber Consulting encourages users and administrators to review Apple Article HT4188 and the Adobe PSIRT blog entry and apply any necessary updates to help mitigate the risks.

WordPress Releases Version 2.8.2

July 30th, 2009 . by DarkFiber Consulting

WordPress has released version 2.8.2 to address a cross-site-scripting vulnerability.

DarkFiber Consulting encourages users and administrators to review the WordPress Blog entry on WordPress 2.8.2 and apply the upgrade to help mitigate the risks.

WordPress Releases Version 2.6.2

September 9th, 2008 . by DarkFiber Consulting

WordPress has released version 2.6.2 to address multiple vulnerabilities. These vulnerabilities are due to SQL column truncation and weaknesses in random number generation. Combined, these vulnerabilities may allow an attacker to reset a user’s password and possibly predict the newly generated password. Exploitation of these vulnerabilities could permit an attacker to gain access to a system running WordPress with open registration enabled under the context of a legitimate user.

DarkFiber Consulting encourages users to review the WordPress Blog entry related to these issues and upgrade to version 2.6.2 as necessary.

WordPress Releases Version 2.6

July 18th, 2008 . by DarkFiber Consulting

WordPress has released version 2.6 to address approximately 194 bugs, some of which may be security related.

DarkFiber Consulting encourages users to review the WordPress Blog entry related to the release of version 2.6 and upgrade to WordPress version 2.6 to help mitigate any risks.