Current Activity Calendar

	December 2008
Su	M	Tu	W	Th	F	Sa
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

Please click on a date above to see current activity for that day.

December 19, 2008 - Current Activity

This is an archived copy of current activity, if you would like to see the most recent version, please click here.

*December 17*	Microsoft Releases Security Bulletin MS08-078
*December 17*	Mozilla has released Firefox 3.0.5
*December 17*	Opera Software releases Opera Version 9.63
*December 16*	Microsoft Releases Advance Notification
*December 15*	Apple Releases Security Updates for Multiple Vulnerabilities
*December 12*	Microsoft Releases Security Advisory (961051)
*December 11*	Airline Ticket Email Scam
*December 11*	CA ARCserve Backup Vulnerability
*December 9*	Microsoft Releases Security Advisory (960906)
*December 9*	Microsoft Releases December Security Bulletin

Microsoft Releases Security Bulletin MS08-078

added December 17, 2008 at 01:39 pm

Microsoft has released Security Bulletin MS08-078 to address a vulnerability in Internet Explorer. This vulnerability is due to an invalid pointer reference in the data binding function. By convincing a user to view a specially crafted document that performs data binding (e.g., a web page, email message, or attachment), a remote, unauthenticated attacker may be able to execute arbitrary code.

US-CERT encourages users to review Microsoft Security Bulletin MS08-078 and apply the update or workarounds listed in the bulletin to help mitigate the risks. Users may also want to consider implementing the best security practices listed in the Securing Your Web Browser document to strengthen their web browsers against future vulnerabilities.

Additional information regarding this vulnerability can be found in the Vulnerability Notes Database.

Mozilla has released Firefox 3.0.5

added December 17, 2008 at 10:00 am

Mozilla has released Firefox 3.0.5 to address multiple vulnerabilities. The impacts of these vulnerabilities include cross-site scripting and information disclosure. As described in the Mozilla Foundation Security Advisories, some of these vulnerabilities may also affect Thunderbird.

US-CERT encourages users to do the following to help mitigate the risks:

Review the Mozilla Foundation Security Advisory.
Update to Firefox 3.0.5.

Opera Software releases Opera Version 9.63

added December 17, 2008 at 09:45 am

Opera Software has released Opera Version 9.63 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, conduct cross-site scripting, or cause a denial-of-service condition.

US-CERT encourages users and administrators to review Opera advisories: 920, 921, 922, 923, and 924 and upgrade to version 9.63 to help mitigate the risks.

Microsoft Releases Advance Notification

added December 16, 2008 at 06:11 pm

Microsoft has released a Security Bulletin Advance Notification indicating that an out-of-band Security Bulletin will be released. This bulletin will address a remote code execution vulnerability in Microsoft Internet Explorer. Release of this Bulletin is scheduled for Wednesday, December 17.

US-CERT encourages users to review the Security Bulletin Advance Notification and apply any necessary updates when they become available. Additional information about this vulnerability can be found in the Vulnerability Notes Database.

US-CERT will provide additional information as it becomes available.

Apple Releases Security Updates for Multiple Vulnerabilities

added December 15, 2008 at 04:17 pm

Apple has released Security Update 2008-008 and Mac OS X v10.5.6 to address multiple vulnerabilities in Mac OS X and related products. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, denial of service, or information disclosure.

US-CERT encourages users to review Apple article HT3338 and apply the appropriate updates.

Microsoft Releases Security Advisory (961051)

added December 11, 2008 at 10:35 am | updated December 12, 2008 at 12:02 pm

Microsoft has released Security Advisory 961051 to address reports of attacks against a new vulnerability in Internet Explorer 7. By convincing a user to view a specially crafted XML document, an attacker may be able to execute arbitrary code with the privileges of the user. Exploit code for this vulnerability is publicly available.

UPDATE: Microsoft indicates that Internet Explorer 5.01 Service Pack 4, Internet Explorer 6 Service Pack 1, Internet Explorer 6, and Internet Explorer 8 Beta 2 are potentially vulnerable.

US-CERT encourages users to review Microsoft Security Advisory 961051 and implement appropriate recommendations from the Suggested Actions section to help mitigate the risks.

Additional information is available in the Vulnerability Notes database. US-CERT will provide further details as they become available.

Airline Ticket Email Scam

added December 11, 2008 at 03:31 pm

US-CERT is aware of public reports of an email scam circulating that is targeting holiday travelers. The email messages related to this scam appear to come from legitimate major airlines and contain a .zip attachment. This .zip attachment appears to contain a purchase invoice and flight ticket. If a user opens this attachment, malicious code may be installed on the system.

US-CERT encourages users to do the following to help mitigate the risks:

Install antivirus software and keep the virus signatures up to date.
Use caution when opening attachments.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

CA ARCserve Backup Vulnerability

added December 11, 2008 at 02:06 pm

CA has released a Security Notice and software patches to address a vulnerability in ACRserve Backup. This vulnerability is due to insufficient verification of client data. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code or crash the LDBserver service.

US-CERT encourages users to review the CA Security Notice and apply the appropriate patch to help mitigate the risks.

Microsoft Releases Security Advisory (960906)

added December 9, 2008 at 05:44 pm

Microsoft has released Security Advisory 960906 to address reports of a vulnerability in the WordPad Text Converter for Word 97 files. The advisory indicates that Windows 2000 Service Pack 4, Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2 are affected by this vulnerability. Exploitation of this vulnerability may allow an unauthenticated attacker to execute arbitrary code or obtain local user rights. Additionally, Microsoft indicates that they are aware of limited and targeted attacks using this vulnerability.

US-CERT encourages users to review Microsoft Security Advisory 960906 and implement any necessary Suggested Actions to help mitigate the risks.

US-CERT will provide additional information as it becomes available.

Microsoft Releases December Security Bulletin

added December 9, 2008 at 02:13 pm

Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, Developer Tools and Software, and Server Software as part of the Microsoft Security Bulletin Summary for December 2008. These vulnerabilities may allow an attacker to execute arbitrary code or escalate privileges.

US-CERT encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied.

US-CERT: United States Computer Emergency Readiness Team

Information For

Sign Up

Reporting

DHS Threat Advisory