Search Keyword:
Any words All words Exact phrase
Ordering: Newest first Oldest first Most popular Alphabetical Section/Category

Search Keyword active Total 50 results found.

1. USAA Phishing Scam and Malware Campaign (News/CERT) US-CERT is aware of public reports of an active spear-phishing attack via email messages directed at United Services Automobile Association (USAA) members. These messages contain the subject line "Dep 2. USAA Phishing Scam and Malware Campaign (News/CERT) US-CERT is aware of public reports of an active spear-phishing attack via email messages directed at United Services Automobile Association (USAA) members. These messages contain the subject line "Dir 3. Adobe Prenotification Security Advisory for Adobe Flash Player (News/CERT) ...to address multiple vulnerabilities. The advisory indicates that one of the vulnerabilities is being actively exploited. Adobe states that the update will be available today. US-CERT encour... 4. Adobe Releases Security Bulletin for Critical Vulnerability in Flash Player (News/CERT) ... Linux, and Solaris 10.3.185.23 and earlier for Android Adobe indicates that it has received reports of active exploitation of this vulnerability. Adobe recommends that affected Windows, Macintosh, ... 5. Adobe Releases Security Advisory for Flash Player, Reader, and Acrobat (News/CERT) ... not released a fix for this vulnerability. The Adobe advisory indicates that this vulnerability is being actively exploited via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered... 6. Microsoft Releases Security Advisory 979352 (News/CERT) ...ity may allow an attacker to execute arbitrary code. Microsoft also indicates that it is aware of public, active exploitation of this vulnerability.US-CERT encourages users and administrators to revie... 7. Adobe Reader and Acrobat Remote Code Execution Vulnerability (News/CERT) ...loitation of this vulnerability may result in arbitrary code execution. Public reports currently indicate active exploitation of this vulnerability.US-CERT encourages users and administrators to do th... 8. Adobe Reader and Acrobat Remote Code Execution Vulnerability (News/CERT) ...ly crafted PDF file, an attacker may be able to execute arbitrary code. Public reports currently indicate active exploitation of this vulnerability.US-CERT encourages users and administrators to do th... 9. SSL and TLS Vulnerable to Man-in-the-middle Attacks (News/CERT) ...rators to review the OpenSSL 0.9.81 release and apply any updates.US-CERT has not received any reports of active exploitation and will continue to provide additional information as it becomes availabl... 10. SSL and TLS Vulnerable to Man-in-the-middle Attacks (News/CERT) ...rators to review the OpenSSL 0.9.8l release and apply any updates.US-CERT has not received any reports of active exploitation and will continue to provide additional information as it becomes availabl... 11. Adobe Releases Security Bulletin for Critical Vulnerability (News/CERT) ... of a critical vulnerability in Adobe Reader and Acrobat. Adobe indicates that it has received reports of active exploitation of this vulnerability. Release of an update for this vulnerability is sche... 12. Adobe Releases Shockwave Player Update and Flash Player Security Advisory (News/CERT) ...released Shockware Player 11.5.1.601 because previous versions used a vulnerable version of the Microsoft Active Template Library (ATL). Additionally, Adobe has released a security advisory to address... 13. Adobe Releases Shockwave Player Update and Flash Player Update (News/CERT) ...released Shockware Player 11.5.1.601 because previous versions used a vulnerable version of the Microsoft Active Template Library (ATL). Additionally, Adobe has released Flash Player 10.0.22.87 and 9.... 14. Adobe Releases Shockwave Player Update and Flash Player Update (News/CERT) ...released Shockwave Player 11.5.1.601 because previous versions used a vulnerable version of the Microsoft Active Template Library (ATL). Additionally, Adobe has released Flash Player 10.0.22.87 and 9.... 15. Microsoft Releases Two Out-of-Band Security Bulletins (News/CERT) ... to execute arbitrary code. The second bulletin, MS09-035, addresses vulnerabilities in the Visual Studio Active Template Library (ATL). Exploitation of these vulnerabilities may allow an attacker to ... 16. Microsoft Releases Two Out-of-Band Security Bulletins and a Security Advisory (News/CERT) ... to execute arbitrary code. The second bulletin, MS09-035, addresses vulnerabilities in the Visual Studio Active Template Library (ATL). Exploitation of these vulnerabilities may allow an attacker to ... 17. Microsoft Releases Two Out-of-Band Security Bulletins and a Security Advisory (News/CERT) ... to execute arbitrary code. The second bulletin, MS09-035, addresses vulnerabilities in the Visual Studio Active Template Library (ATL). Exploitation of these vulnerabilities may allow an attacker to ... 18. Microsoft Releases Security Advisory 972890 (News/CERT) Microsoft has released Security Advisory 972890 to alert users about a vulnerability in Microsoft Video ActiveX Control. Exploitation of this vulnerability may allow an attacker to execute arbitrary c 19. Microsoft Releases Security Advisory 972890 (News/CERT) Microsoft has released Security Advisory 972890 to alert users about a vulnerability in Microsoft Video ActiveX Control. Exploitation of this vulnerability may allow an attacker to execute arbitrary c 20. Microsoft Internet Information Services (IIS) WebDAV Request Vulnerability (News/CERT) ...bDAV folder or obtain sensitive information. US-CERT is also aware of publicly available exploit code and active exploitation of this vulnerability.US-CERT encourages users to implement the following ... 21. Microsoft Internet Information Services (IIS) WebDAV Request Vulnerability (News/CERT) ...t user from writing to an unauthorized area. US-CERT is also aware of publicly available exploit code and active exploitation of this vulnerability.US-CERT encourages users to implement the following ... 22. Microsoft Internet Information Services (IIS) WebDAV Request Vulnerability (News/CERT) ...t user from writing to an unauthorized area. US-CERT is also aware of publicly available exploit code and active exploitation of this vulnerability.US-CERT encourages users to implement the following ... 23. Adobe Releases Security Bulletin for Flash Media Server (News/CERT) ...ile running on a Flash Media Server." According to Adobe, this issue affects versions of Flash Media Interactive Server and Flash Media Streaming Server.US-CERT encourages users to review Adobe Securi... 24. Adobe Releases Security Updates for Reader 9 and Acrobat 9 (News/CERT) ...arbitrary code or cause a denial-of-service condition. Adobe has indicated that it is aware of reports of active exploitation.US-CERT encourages users to review Adobe security bulletin APSB09-03 and u... 25. Adobe Releases Security Updates for Reader 9 and Acrobat 9 (News/CERT) ...arbitrary code or cause a denial-of-service condition. Adobe has indicated that it is aware of reports of active exploitation.US-CERT encourages users to review Adobe security bulletin APSB09-03 and u... 26. New Attack Vectors for Adobe JBIG2 Vulnerability (News/CERT) ... This can be disabled by executing the following command: regsvr32 /u "%CommonProgramFiles%\Adobe\Acrobat\ActiveX\pdfshell.dll" Additional information about the Adobe Reader and Acrobat JBIG2 vulnera... 27. Adobe Releases Security Bulletin for Critical Vulnerability (News/CERT) ...te arbitrary code or cause a denial-of-service condition. Adobe indicates that it has received reports of active exploitation.US-CERT encourages users to take the following actions to help mitigate th... 28. Adobe Releases Security Bulletin for Critical Vulnerability (News/CERT) ...te arbitrary code or cause a denial-of-service condition. Adobe indicates that it has received reports of active exploitation.US-CERT encourages users to take the following actions to help mitigate th... 29. Adobe Releases Security Bulletin for Critical Vulnerability (News/CERT) ...te arbitrary code or cause a denial-of-service condition. Adobe indicates that it has received reports of active exploitation.US-CERT encourages users to take the following actions to help mitigate th... 30. Active Exploitation of Microsoft Internet Explorer 7 Vulnerability (News/CERT) US-CERT is aware of a public report indicating active exploitation of a previously patched vulnerability in Microsoft Internet Explorer 7. This vulnerability was addressed in Microsoft Security Adviso 31. BlackBerry Security Advisory (News/CERT) ...has released a Security Advisory to address a vulnerability in the BlackBerry Application Web Loader ActiveX control. By convincing a user to view a specially crafted HTML document, an attacker m... 32. Symantec Releases Security Advisory (News/CERT) Symantec has released a security advisory to address a vulnerability in the Symantec AppStream LaunchObj ActiveX control. By convincing a user to view a specially crafted HTML document, an attacker ma 33. Adobe Reader Exploit Circulating (News/CERT) US-CERT is aware of public reports of active exploitation of a recent Adobe Reader vulnerability. This exploit appears to arrive in the form of a maliciously crafted PDF file and leverages the JavaScr 34. Multiple Web Browsers Affected by Clickjacking (News/CERT) ...at Firefox users consider using the NoScript plug-in as an added preventative measure. Disabling IFRAMEs, active content, and plug-ins by default, as outlined in the Securing Your Web Browser document... 35. Veritas NetBackup Server/Enterprise Server Vulnerabilities (News/CERT) ...These vulnerabilities are due to stack-based buffer overflow conditions and unsafe method calls within an ActiveX control that is part of the scheduler component. Exploitation of this vulnerability ma... 36. Novell Releases Update for iPrint Vulnerability (News/CERT) ...ese vulnerabilities are due to the following:multiple buffer overflow conditions within the Novell iPrint ActiveX control (ienipp.ocx) multiple buffer overflow conditions within nipplib.dll an insecur... 37. SSH Key-based Attacks (News/CERT) US-CERT is aware of active attacks against linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then us 38. SSH Key-based Attacks (News/CERT) US-CERT is aware of active attacks against linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then us 39. Webex Meeting Manager ActiveX Control Vulnerability (News/CERT) ...vulnerability is due to a buffer overflow condition in the "NewObject()" method within the WebexUCFObject ActiveX control (atucfobj.dll). By convincing a user to visit a specially crafted web page, op... 40. Webex Meeting Manager ActiveX Control Vulnerability (News/CERT) ...ity is due to improper handling of arguments passed to the "NewObject()" method within the WebexUCFObject ActiveX control (atucfobj.dll). By convincing a user to visit a specially crafted web page, a ... 41. RealPlayer Releases Update (News/CERT) ... or obtain sensitive information. RealNetworks identifies the vulnerabilities as the following:RealPlayer ActiveX controls property heap memory corruption. Local resource reference vulnerability in Re... 42. Microsoft Releases Security Advisory For Snapshot Viewer ActiveX Control (News/CERT) Microsoft has released a Security Advisory to address a vulnerability in a Microsoft Access ActiveX control. By convincing a user to visit a specially crafted web page, a remote, unauthenticated attac 43. Microsoft Internet Explorer Frame Vulnerability (News/CERT) ...low an attacker to capture keystrokes or perform other malicious acts.US-CERT encourages users to disable Active Scripting in the Internet Zone, as specified in the "Securing Your Web Browser" documen... 44. Adobe Releases Security Bulletin (News/CERT) ...ry code or cause a denial-of-service condition. The Security Bulletin also indicates there are reports of active exploitation.US-CERT encourages users to review Adobe Security Bulletin APSB08-15 and a... 45. HP Instant Support ActiveX Control Vulnerabilities (News/CERT) HP has released a support document to address multiple vulnerabilities in the Instant Support ActiveX control (HPISDataManager.dll). These vulnerabilities may allow a remote attacker to execute arbitr 46. Prefetching 2 (Top/Maintain) ...ing programs that start in different modes, but that's about it. OTOH, at least this advice isn't actively harmful like cleaning out your prefetch folder. ... 47. United States Tax Court Phishing Attack (News/CERT) ... certificate installs successfully, the browser is redirected to another page that attempts to install an ActiveX control. The user may be prompted to allow the installation, and because the control i... 48. Compromised Websites Hosting Malicious JavaScript (News/CERT) ... similar attacks:Regularly apply software updates and patches provided by vendors. Disable JavaScript and ActiveX as described in the Securing Your Web Browser document. For more technical information... 49. HP Software Update Vulnerabilities (News/CERT) ...lnerabilities affecting HP Software Update. These vulnerabilities are due to insecure methods in multiple ActiveX controls. Exploitation of these vulnerabilities may allow a remote attacker to execute... 50. Active Exploitation of GDI Vulnerabilities (News/CERT) US-CERT has seen public reports of an exploit targeting vulnerabilities in GDI. These vulnerabilities are due to buffer overflow conditions that exist in the processing of EMF and WMF image files. By

<< Start < Prev 1 Next > End >>