DarkFiber Consulting – IT Managed Services

RIM Releases Security Advisory for BlackBerry Enterprise Server

October 23rd, 2010 . by DarkFiber Consulting

RIM has released a security advisory to address a vulnerability in the PDF distiller of the BlackBerry attachment service for the BlackBerry Enterprise Server. This vulnerability may allow an attacker to execute arbitrary code or cause a denial-of-service condition.

DarkFiber Consulting encourages users and administrators to review BlackBerry security advisory KB24547 and apply any necessary updates to help mitigate the risks.

RealNetworks Releases Security Update for RealPlayer Vulnerabilities

October 23rd, 2010 . by DarkFiber Consulting

RealNetworks has issued a Security Update to address multiple vulnerabilities affecting RealPlayer. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

DarkFiber Consulting encourages users and administrators to review the RealNetworks security advisory and apply any necessary updates to help mitigate the risks.

Adobe Releases Security Advisory for Flash Player, Reader, and Acrobat

June 23rd, 2010 . by DarkFiber Consulting

Adobe has released a security advisory to notify users of a vulnerability in Adobe Flash Player, Reader, and Acrobat. Exploitation of this vulnerability may allow an attacker to execute arbitrary code and take control of the affected system. The advisory indicates that Adobe is aware of active exploitation of this vulnerability.

DarkFiber Consulting encourages users and administrators to review Adobe security advisory APSA10-01 and apply any necessary workarounds until a fix is released by the vendor.

DarkFiber Consulting will provide additional information as it becomes available.

Research in Motion Releases Security Advisory

October 14th, 2009 . by DarkFiber Consulting

Research in Motion has released a security advisory to address a vulnerability related to how null characters are displayed in a BlackBerry dialog box. This vulnerability may allow an attacker to trick users into believing that they are connecting to a trusted secure site.

DarkFiber Consulting encourages users to review the BlackBerry security advisory KB19552 and apply any necessary updates.

Adobe Releases Shockwave Player Update and Flash Player Update

July 30th, 2009 . by DarkFiber Consulting

Adobe has released Shockware Player 11.5.1.601 because previous versions used a vulnerable version of the Microsoft Active Template Library (ATL). Additionally, Adobe has released Flash Player 10.0.22.87 and 9.0.246.0 to address the ATL issue and additional vulnerabilities in Flash Player. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

DarkFiber Consulting encourages users and administrators to review Adobe security bulletins APSB09-11 and APSB09-10 and apply any necessary updates to help mitigate the risks. Additional information can be found in the Adobe PSIRT blog and in Adobe security advisory APSA09-04.

Symantec Releases Security Advisory for Backup Exec

November 21st, 2008 . by DarkFiber Consulting

Symantec has released a security advisory to address multiple vulnerabilities for Symantec Backup Exec. These vulnerabilities may allow an attacker to gain access to or modify information, cause a denial of service, or potentially execute arbitrary code.

DarkFiber Consulting encourages users and administrators to review Symantec Security Advisory SYM08-021 and apply any necessary updates to help mitigate the risks.

VMware Releases Security Advisory VMSA-2008-0018 and Updates VMSA-2008-0016.1

November 10th, 2008 . by DarkFiber Consulting

VMware has released Security Advisory VMSA-2008-0018 and has updated Security Advisory VMSA-2008-0016.1 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to conduct directory traversal attacks, operate with escalated privileges, or obtain sensitive information.

DarkFiber Consulting encourages users and administrators to review VMware Security Advisories VMSA-2008-0018 and VMSA-2008-0016.1 and apply any necessary updates to help mitigate the risks.

Adobe Releases Security Advisory for PageMaker 7

October 31st, 2008 . by DarkFiber Consulting

Adobe has released a Security Advisory to address vulnerabilities in PageMaker 7.0.1 and 7.0.2. These vulnerabilities may allow an attacker to execute arbitrary code.

DarkFiber Consulting encourages users and administrators to review Adobe’s Security Advisory ASPA08-10 and apply any necessary updates to help mitigate the risks. Note that the Adobe Security Advisory indicates that an additional vulnerability remains unaddressed by the update.

VMware Releases Security Advisory VMSA-2008-0017

October 31st, 2008 . by DarkFiber Consulting

VMware has released a Security Advisory indicating it has updated the ESX packages to address vulnerabilities in libxml2, ucd-snmp, and libtiff. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, spoof authenticated SNMPv3 packets, or cause a denial-of-service condition.

DarkFiber Consulting encourages users and administrators to review VMware Security Advisory VMSA-2008-0017 and apply any necessary updates to help mitigate the risks.

Microsoft Updates Security Advisory 951306

October 14th, 2008 . by DarkFiber Consulting

In April 2008, Microsoft released Security Advisory 951306 to alert users of a vulnerability in Microsoft Windows. This vulnerability may allow local users, or users who can legitimately run code in the context of IIS or SQL Server, to operate with elevated privileges. Recently, Microsoft Security Response Center (MSRC) posted several blog entries indicating that the Security Advisory was updated to reflect the availability of public exploit code. A patch or update is not available to correct this issue.

DarkFiber Consulting encourages users and administrators to do the following to help mitigate the risks:

« Previous Entries