IT Security: US Cert released latest vulnerability summary
On 17 May 2011, the US Computer Emergency Readiness Team (US-CERT) released its Vulnerability Summary for the week of 9 May 2011. As usual, some programmes in widespread use appear, as does more specialist software such as that used in back offices of large corporations.
Most Recent - This Section
IT Security: criminals exploit insecure WordPress installationsIT Security: Phishing attack from within Yahoo Messenger
IT Security: Zappos.Com admits huge security breach.
IT Security: "Twihards" targeted by internet crooks
IT Security: Microsoft ceases use of "supercookies."
Most Recent - Whole Site
The Risk Professional: Green Capital Consulting GroupLegal Professional: Baker Mac lawyer guilty of money laundering and securities fraud
Sales and Marketing: shooting oneself in the foot
Business Crime: Dear Mrs Kate Dave: Yes, please. Send it now.
The Risk Professional: Is your data secure enough for the UK's ICO?
Most Recent - BankingInsuranceSecurities.Com
Sanctions: USA PATRIOT Act designation 20120522Sanctions: OFAC Update 20120515
Sanctions: OFAC update 20120508
Sanctions: OFAC Update 20120517
Sanctions: OFAC Update 20120517 - 2
High Vulerability:
Google Chrome
HP - OpenView Storage Data Protector
Inventivetec -- Mediacast
Liferay - Portal
Microsoft Windows Server 2003
Microsoft Office
Microsoft Powerpoint
Mozilla Firefox and Sea Monkey
NEC IP38x / 1000
Samsung Data Management Server
Skype (on OS X)
Medium and low vulnerabilities include (not full list)
Linux Kernal
HP Palm Web OS
Opera browser
PERL
POSTFIX
VMware
Apache
Rubyforge
For more information see http://www.us-cert.gov/cas/bulletins/SB11-136.html
Download PDF version of this page
