The US-CERT Cyber Security Bulletin SB07-344 was released today. I'm only listing the high vulnerabilities:
APC -- Rack Power Distribution Unit
APC -- OAS
Apple -- Quicktime
Apple -- Mac OS X
bcoos -- bcoos
Beehive Forum -- Beehive Forum
DeluxeBB -- DeluxeBB
flac -- libflac
FTP Admin -- FTP Admin
GNU -- Emacs
HP -- Select Identity
Irola -- My-Time
Joomla -- Joomla
MIT -- Kerberos 5
phpBB -- Garage
Well, this is not that bad you might think? According to the Zero Day Initiative, we have lots more coming our way. These affect some high profile vendors like Computer Associates, Microsoft, Hewlett-Packard, Oracle, Trendmicro, Symantec etc.....
All vendors were warned and some of the vulnerabilties are over 400 days old. Makes you wonder who else has knowledge of the flaws and if there are exploits in the wild.
Security4all Blog
Twitter
Slideshare
Facebook
Digg
Flickr
0 comments:
Post a Comment