EMC Documentum eRoom Multiple HTML Injection Vulnerabilities

Mozilla Firefox, Thunderbird, and SeaMonkey Drag and Drop Cross Site Scripting Vulnerability

National Cyber Alert System
Technical Cyber Security Alert TA11-284A Microsoft Updates for Multiple Vulnerabilities Original release date: October 11, 2011
Last revised: --
Source: US-CERTSystems Affected

• Microsoft Windows
• Microsoft .NET Framework
• Microsoft Silverlight
• Internet Explorer
• Microsoft Forefront Unified Access Gateway
• Microsoft Host Integration Server

Overview

There are multiple vulnerabilities in Microsoft Windows, .NET Framework, Silverlight, Internet Explorer, Foref...

National Cyber Alert System
Technical Cyber Security Alert TA11-312A Microsoft Updates for Multiple Vulnerabilities Original release date: November 08, 2011
Last revised: --
Source: US-CERTSystems Affected
Overview

There are multiple vulnerabilities in Microsoft Windows. Microsoft has released updates to address these vulnerabilities.

I. Description

The Microsoft Security Bulletin Summary for November 2011 describes multiple vulnerabilities in Microsoft Windows. Microsoft has released ...

National Cyber Alert System
Technical Cyber Security Alert TA11-286A Apple Updates for Multiple Vulnerabilities Original release date: October 13, 2011
Last revised: --
Source: US-CERTSystems Affected

• Mac OS X 10.6.8
• Mac OS X Server 10.6.8
• Mac OS X 10.7, 10.7.1
• Mac OS X Server 10.7, 10.7.1

Overview

There are multiple vulnerabilities in Mac OS X 10.6.8, 10.7, and 10.7.1 and Mac OS X Server 10.6.8, 10.7, and 10.7.1. Apple has released updates to address these vulnerabilities.

I. De...

National Cyber Alert System
Technical Cyber Security Alert TA11-347A Microsoft Updates for Multiple Vulnerabilities Original release date: December 13, 2011
Last revised: --
Source: US-CERTSystems Affected

• Microsoft Windows
• Microsoft Office
• Internet Explorer

Overview

There are multiple vulnerabilities in Microsoft Windows, Office, and Internet Explorer. Microsoft has released updates to address these vulnerabilities.

I. Description

The Microsoft Security Bulletin Summary for Dece...

Adobe Updates for Multiple Vulnerabilities Original release date: December 16, 2011
Last revised: --
Source: US-CERTSystems Affected

• Adobe Reader X (10.1.1) and earlier 10.x versions for Windows and Macintosh
• Adobe Reader 9.4.6 and earlier 9.x versions for Windows, Macintosh, and UNIX
• Adobe Acrobat X (10.1.1) and earlier 10.x versions for Windows and Macintosh
• Adobe Acrobat 9.4.6 and earlier 9.x versions for Windows and Macintosh

Overview

Adobe has released Security Bulletin APSB11-...

National Cyber Alert System
Technical Cyber Security Alert TA12-010A Microsoft Updates for Multiple Vulnerabilities Original release date: January 10, 2012
Last revised: --
Source: US-CERTSystems Affected

• Microsoft Windows
• Microsoft Developer Tools and Software

Overview

There are multiple vulnerabilities in Microsoft Windows and Microsoft Developer Tools and Software. Microsoft has released updates to address these vulnerabilities.

I. Description

The Microsoft Security Bulletin Su...

National Cyber Alert System
Technical Cyber Security Alert TA12-006A Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack Original release date: January 06, 2012
Last revised: --
Source: US-CERTSystems Affected

Most Wi-Fi access points that support Wi-Fi Protected Setup (WPS) are affected.

Overview

Wi-Fi Protected Setup (WPS) provides simplified mechanisms to configure secure wireless networks. The external registrar PIN exchange mechanism is susceptible to brute-force attacks th...

"Anonymous" DDoS Activity Original release date: January 24, 2012
Last revised: January 26, 2012
Source: US-CERTOverview

US-CERT has received information from multiple sources about coordinated distributed denial-of-service (DDoS) attacks with targets that included U.S. government agency and entertainment industry websites. The loosely affiliated collective "Anonymous" allegedly promoted the attacks in response to the shutdown of the file hosting site MegaUpload and in protest of proposed U....