Tagged: feeds

VMware Releases Updates for vCAC 0

VMware Releases Updates for vCAC

Original release date: December 09, 2014 VMware has released security updates to address a critical vulnerability in vCloud Automation Center (vCAC), which could allow a remote attacker to take control of a vulnerable system. US-CERT encourages users and administrators to review VMware Security Advisory VMSA-2014-0013 and apply the necessary updates

Microsoft Releases December 2014 Security Bulletin 0

Microsoft Releases December 2014 Security Bulletin

Original release date: December 09, 2014 Microsoft has released updates to address vulnerabilities in Exchange, Windows, Internet Explorer, and Office as part of the Microsoft Security Bulletin Summary for December 2014. Some of these vulnerabilities could allow elevation of privilege, remote code execution, or disclosure of information. US-CERT encourages users and administrators to review Microsoft Security Bulletin MS14-DEC and apply the necessary updates.

IBM Releases Security Update for MDM 0

IBM Releases Security Update for MDM

Original release date: December 04, 2014 IBM has released Tivoli Endpoint Manager Mobile Device Management (MDM) version 9.0.60100 to address a vulnerability which may allow a remote attacker to gain control of an affected system.   Users and administrators are encouraged to review the IBM Security Bulletin and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

TA14-329A: Regin Malware 0

TA14-329A: Regin Malware

Original release date: November 25, 2014 Systems Affected Microsoft Windows NT, 2000, XP, Vista, and 7 Overview On November 24, 2014, Symantec released a report on Regin, a sophisticated backdoor Trojan used to conduct intelligence-gathering campaigns. At this time, the Regin campaign has not been identified targeting any organizations within the United States.

TA14-323A: Microsoft Windows Kerberos KDC Remote Privilege Escalation Vulnerability 0

TA14-323A: Microsoft Windows Kerberos KDC Remote Privilege Escalation Vulnerability

Original release date: November 19, 2014 Systems Affected Microsoft Windows Vista, 7, 8, and 8.1 Microsoft Server 2003, Server 2008, Server 2008 R2, Server 2012, and Server 2012 R2 Overview A remote escalation of privilege vulnerability exists in implementations of Kerberos Key Distribution Center (KDC) in Microsoft Windows which could allow a remote attacker to take control of a vulnerable system. [ 1 ] Description The Microsoft Windows Kerberos KDC fails to properly check service tickets for valid signatures, which can allow aspects of the service ticket to be forged