DarkFiber Consulting – IT Managed Services

RealNetworks Releases Security Update for RealPlayer Vulnerabilities

October 23rd, 2010 . by DarkFiber Consulting

RealNetworks has issued a Security Update to address multiple vulnerabilities affecting RealPlayer. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

DarkFiber Consulting encourages users and administrators to review the RealNetworks security advisory and apply any necessary updates to help mitigate the risks.

Microsoft Releases October Security Bulletin

October 23rd, 2010 . by DarkFiber Consulting

Microsoft has released updates to address vulnerabilities in Microsoft Windows, .NET Framework, Server Software, Office, and Internet Explorer as part of the Microsoft Security Bulletin Summary for October 2010. These vulnerabilities may allow an attacker to execute arbitrary code, obtain sensitive information, operate with elevated privileges, cause a denial-of-service condition, or tamper with data.

DarkFiber Consulting encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied.

Oracle Releases Critical Patch for October 2010

October 23rd, 2010 . by DarkFiber Consulting

Oracle has released its Critical Patch Update for October 2010 to address 85 vulnerabilities across multiple products. This update contains the following security fixes:

  • 7 for Oracle Database Server
  • 8 for Oracle Fusion Middleware
  • 1 for Oracle Enterprise Manager Grid Control
  • 6 for Oracle E-Business Suite
  • 2 for Oracle Supply Chain Products Suite
  • 21 for Oracle PeopleSoft and JDEdwards Suite
  • 4 for Oracle Siebel Suite
  • 1 for Oracle Primavera Products Suite
  • 26 for Oracle Sun Products Suite
  • 5 for Oracle Open Office Suite
  • 4 for Oracle VM

DarkFiber Consulting encourages users and administrators to review the October 2010 Critical Patch Update and apply any necessary updates to help mitigate the risks.

Cisco Releases Security Advisory for Firewall Services Module

August 6th, 2010 . by DarkFiber Consulting

Cisco has released a security advisory to address multiple vulnerabilities in the Cisco Firewall Services Module. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition.

DarkFiber Consulting encourages users and administrators to review Cisco security advisory cisco-sa-20100804-fwsm and apply any necessary updates to help mitigate the risks.

Apple Releases Safari 5.0.1 and Safari 4.1.1

August 6th, 2010 . by DarkFiber Consulting

Apple has released Safari 5.0.1 and Safari 4.1.1 for Windows and Mac OS X to address multiple vulnerabilities in Safari and WebKit. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or obtain sensitive information.

DarkFiber Consulting encourages users and administrators to review Apple article HT4276 and apply any necessary updates to help mitigate the risks.

Apple Releases Security Update 2010-004 and Mac OS X v10.6.4

June 23rd, 2010 . by DarkFiber Consulting

Apple has released Security Update 2010-004 and Mac OS X v10.6.4 to address multiple vulnerabilities that affect a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code,  cause a denial-of-service condition, operate with elevated privileges, conduct man-in-the-middle attacks, alter configuration settings, or conduct cross-site scripting attacks.

Note that these Apple updates include Adobe Flash Player plugin version 10.0.45.2, which contains vulnerabilities previously identified in Adobe Security Bulletin APSB10-14. The Adobe Product Security Incident Response Team (PSIRT) has published a blog entry recommending that Mac OS X users upgrade to the latest version of the Flash Player (version 10.1.53.64) after applying these Apple updates.

DarkFiber Consulting encourages users and administrators to review Apple Article HT4188 and the Adobe PSIRT blog entry and apply any necessary updates to help mitigate the risks.

Adobe Releases Flash 10.1

June 23rd, 2010 . by DarkFiber Consulting

Adobe has released a Security Bulletin to address vulnerabilities in Adobe Flash Player 10.0.45.2 and earlier versions and in Adobe AIR 1.5.3.9130 and earlier versions.  Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.

DarkFiber Consulting encourages users and administrators to review Adobe Security Bulletin APSB10-14 and to update to Adobe Flash Player 10.1 to help mitigate the risks.

Microsoft Releases June Security Bulletin

June 23rd, 2010 . by DarkFiber Consulting

Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, Office, SharePoint, and .NET Framework as part of the Microsoft Security Bulletin Summary for June 2010. These vulnerabilities may allow an attacker to execute arbitrary code or operate with elevated privileges.

DarkFiber Consulting encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied.

Apple Releases Safari 5.0 and Safari 4.1

June 23rd, 2010 . by DarkFiber Consulting

Apple has released Safari 5.0 and Safari 4.1 for Windows and Mac OS X to address multiple vulnerabilities in ColorSync, Safari, and WebKit. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, or conduct cross-site scripting attacks.

DarkFiber Consulting encourages users and administrators to review Apple article HT4196 and apply any necessary updates to help mitigate the risks.

Apple Releases iOS 4

June 23rd, 2010 . by DarkFiber Consulting

Apple has released iOS 4 for iPhone 3G and later, and iPod touch (2nd generation) and later, to address multiple vulnerabilities across several packages. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, disclose sensitive information, bypass security restrictions, or conduct cross-site scripting attacks.

DarkFiber Consulting encourages users and administrators to review Apple article HT4225 and update to iOS 4 as necessary to help mitigate the risks.

« Previous Entries