Antivirus Advice for Computer Protection on the Internet
  ::   Apple Releases Multiple Security Updates   ::   Apple Releases Multiple Security Updates   ::   Mozilla Releases Firefox 10 and 3.6.26   ::   Denial-of-Service Malware Campaign   ::   Google Releases Chrome 16.0.912.77   ::   Symantec pcAnywhere Hotfix   ::   Best Practices for Recovery from the Malicious Erasure of Files   ::   Best Practices for Recovery from the Malicious Erasure of Files   ::   Oracle Releases Critical Patch Update for January 2012   ::   Adobe Releases Security Advisory for Adobe Reader and Acrobat   ::   Phishing Campaign Using Spoofed US-CERT Email Addresses   ::   Phishing Campaign Using Spoofed US-CERT Email Addresses   ::   Phishing Campaign Using Spoofed US-CERT Email Addresses   ::   Microsoft Releases January Security Bulletin   ::   Google Releases Chrome 16.0.912.75   ::   Microsoft Releases Advance Notification for January Security Bulletin   ::   Microsoft Releases January Security Bulletin   ::   Microsoft Releases January Security Bulletin   ::   Multiple Programming Language Implementations Vulnerable to Hash Table Collision Attacks   ::   Multiple Programming Language Implementations Vulnerable to Hash Table Collision Attacks





VMware Releases Multiple Updates for ESX

VMware has released Security Advisory VMSA-2010-0001 to address multiple vulnerabilities in ESX Service Console packages for Network Security Services (NSS) and NetScape Portable Runtime (NSPR). Exploitation of these vulnerabilities may allow an attacker to obtain sensitive information, cause a denial-of-service condition, bypass security restrictions, and compromise a vulnerable system.

Additionally, VMware has updated two previously released advisories: VMSA-2009-0014.2 that addresses vulnerabilities in the DHCP, Service Console Kernel, and Java JRE packages for ESX, and VMSA-2009-0004.3 that addresses vulnerabilities in the OpenSSL, BIND, and Vim packages for ESX.

US-CERT encourages users and administrators to review VMware Security Advisory VMSA-2010-0001, VMSA-2009-0014.2, and VMSA-2009-0004.3 and apply any necessary updates to help mitigate the risks.

Read more: US-CERT Current Activity

 







Today's Internet Security Alerts


Popular Words in Security Alerts
automatically downloads attacks recognizing execution mitigate online executable exploit appears report messages privileges disclosure appear