Various components of Cisco Unified CVP are affected. These vulnerabilities can be exploited independently; however, more than one vulnerability could be exploited on the same device.
Several vulnerabilities were reported in RSA Archer eGRC.
A vulnerability was reported in Apache VCL.
A vulnerability was reported in Microsoft Internet Explorer.
A vulnerability has been reported in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system
A remote user can cause Java applets to be executed on the target user's system
Two vulnerabilities were reported in HP Service Manager
IBM Tivoli Federated Identity Manager Products Java Multiple Vulnerabilities
A vulnerability was reported in HP Printers.
Java issues are being exploited in the wild by exploit kits, with Cool and Redkit specifically being known to use these bugs, and others likely to follow shortly.
Office of the Chief Information Officer1000 Independence Ave., SWWashington, DC202-586-0166