DarkFiber Consulting - IT Managed Services » Information Disclosure

Sun Releases Update 17 for Java SE 6

DarkFiber Consulting — Thu, 10 Dec 2009 18:49:50 +0000

Sun has released update 17 for Java SE JDK 6 and Java SE JRE 6 to address multiple vulnerabilities. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, denial of service, and information disclosure.

DarkFiber Consulting encourages users and administrators to review the Java SE 6 Update 17 release notes and apply any necessary updates to help mitigate the risks.

Apple has released Java for Mac OS X 10.6 Update 1 and Java for Mac OS X 10.5 Update 6 to address these vulnerabilities. Mac users are encouraged to review Apple articles HT3969 and HT3970 and apply any necessary updates to help mitigate the risks.

Tags: Apple Mac, Apple Os, Arbitrary Code Execution, Denial Of Service, Escalation, Information Disclosure, Java Jdk, Java Mac, Java Notes, Java Os, Java Sun, Java Update, Jdk 6, Mac Os X, Mac Users, Necessary Updates, Os X, Privilege, Sun Java, Sun Releases

Mozilla has released Firefox 3.0.5

DarkFiber Consulting — Thu, 18 Dec 2008 05:00:35 +0000

Mozilla has released Firefox 3.0.5 to address multiple vulnerabilities. The impacts of these vulnerabilities include cross-site scripting and information disclosure. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities may also affect Thunderbird.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Review the Mozilla Foundation Security Advisory.
Update to Firefox 3.0.5.

Tags: Address, Cross Site Scripting, Information Disclosure, Mozilla Foundation Security Advisories, Mozilla Foundation Security Advisory, Thunderbird

Apple Releases Security Updates for Multiple Vulnerabilities

DarkFiber Consulting — Mon, 15 Dec 2008 21:17:08 +0000

Apple has released Security Update 2008-008 and Mac OS X v10.5.6 to address multiple vulnerabilities in Mac OS X and related products. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, denial of service, or information disclosure.

DarkFiber Consulting encourages users to review Apple article HT3338 and apply the appropriate updates.

Tags: Address, Apple Article, Apple Updates, Arbitrary Code Execution, Denial Of Service, Escalation, Information Disclosure, Mac Os X, Os X, Privilege, Related Products, Security Updates

Mozilla Releases Updates to Address Vulnerabilities in Multiple Products

DarkFiber Consulting — Fri, 14 Nov 2008 05:00:29 +0000

Mozilla has released Firefox 2.0.0.18, Firefox 3.0.4, and SeaMonkey 1.1.13 to address multiple vulnerabilities. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, security bypass, cross-site scripting, denial of service, and information disclosure. As described in the Mozilla Foundation security advisories, some of these vulnerabilities may also affect Thunderbird.

DarkFiber Consulting encourages users to review the Mozilla Foundation security advisories and apply any necessary updates to help mitigate the risks.

Tags: Address, Arbitrary Code Execution, Cross Site Scripting, Denial Of Service, Escalation, Information Disclosure, Mozilla Foundation Security Advisories, Multiple Products, Necessary Updates, Privilege, Seamonkey, Thunderbird, Vulnerabilities

Mozilla Releases Firefox 3.0.2

DarkFiber Consulting — Thu, 25 Sep 2008 04:13:35 +0000

Mozilla has released Firefox 3.0.2 to address multiple vulnerabilities. The impacts of these vulnerabilities include arbitrary code execution, enabling cross-site scripting, privilege escalation, information disclosure, and denial of service. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities may also affect Thunderbird and SeaMonkey.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Review the Mozilla Foundation Security Advisories.
Update to Firefox 3.0.2.

Tags: Address, Arbitrary Code Execution, Denial Of Service, Escalation, Information Disclosure, Mozilla Foundation Security Advisories, Mozilla Releases, Privilege, Seamonkey, Thunderbird

Cisco Releases Security Alerts

DarkFiber Consulting — Wed, 24 Sep 2008 18:42:41 +0000

Cisco has released multiple security alerts to address vulnerabilities in the Unified Communications Manager and IOS. These vulnerabilities may allow a remote unauthenticated attacker to cause a denial-of-service condition, obtain sensitive information, or operate with escalated privileges.

DarkFiber Consulting encourages users and administrators to review the following Cisco Alerts and apply any necessary updates to help mitigate the risks.

Tags: Attacker, Cisco Ios, Cisco Software, Communications Manager, Control Protocol, Denial Of Service, Feature Service, Information Disclosure, Ipc Message, Memory Leak, Message Memory, Multiprotocol Label, Necessary Updates, Network Traffic, Protocol Label, Redundancy, Service Vulnerability, Session Initiation Protocol, Unified Communications, Virtual Private Network

Apple Releases Security Updates for Multiple Vulnerabilities

DarkFiber Consulting — Wed, 17 Sep 2008 04:20:33 +0000

Apple has released Security Update 2008-006 and Mac OS X v10.5.5 to address multiple vulnerabilities in Mac OS X and related products. The impacts of these vulnerabilities include arbitrary code execution, information disclosure, denial of service, privilege escalation, or DNS cache poisoning.

DarkFiber Consulting encourages users to review Apple article HT3137 and apply the appropriate updates as soon as possible.

DarkFiber Consulting will provide additional details as the they become available.

Tags: Additional Details, Address, Apple Article, Apple Updates, Arbitrary Code Execution, Denial Of Service, Escalation, Information Disclosure, Mac Os X, Os X, Related Products, Security Updates, Service Privilege