December 21, 2006
December Mozilla Vulnerabilities
New versions of Firefox, Thunderbird, and SeaMonkey have been released to fix several vulnerabilities. Users should upgrade to Firefox 1.5.0.9, Firefox 2.0.0.1, Thunderbird 1.5.0.9, or SeaMonkey 1.0.7. These products will automatically check for updates and apply if necessary. Furthermore, at the end of April 2007, support for Firefox 1.5 is scheduled to end. Users are encouraged to upgrade to Firefox 2.
Posted by Richard Frovarp at 8:48 AM
September 14, 2006
Multiple vulnerabilities in multiple products
Update Tuesday for Microsoft has passed. This round of patches fixed isses with Publisher, pragmatic general multicast (PGM) networking communications protocol, and the indexing service. However, this round did not include a patch for a vulnerability that is currently being exploited in Microsoft Word. This patch may not appear until next month.
Adobe has released a critical security alert for Macromedia Flash Player versions 8.0.24.0 and less across all platforms.
Apple has released a security update for Quicktime 7.1.3 on both OS X and Windows.
Posted by Richard Frovarp at 8:16 AM
May 9, 2006
Exchange and Flash Vulnerabilities
There is a security hole in how Microsoft Exchange handles vCal and iCal properties. There are several vulnerabilities in Adobe Macromedia Flash. Microsoft has posted a critical update to fix the problem with Exchange. Microsoft and Adobe have both posted fixes for the Flash problems. The Flash problems are present in Flash for Windows, Macs, and Linux. See Macromedia APSB06-03 for details.
Posted by Richard Frovarp at 7:44 PM
March 22, 2006
Remote Sendmail Vulnerability
This only affects Unix, Linux, or Mac OS X Server machines that are running Sendmail. If you have such a machine, immediately update Sendmail to version 8.13.6 or a new release from your software provider. A race condition exists which can allow a remote attacker to execute arbritary code as the user that Sendmail is ran under. See CERT-US for more information.
Posted by Richard Frovarp at 4:07 PM