You are here

Home » Office of the Chief Information Officer » JC3 Bulletin Archive

JC3 Bulletin Archive

December 31, 2012
V-058: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw Lets Remote Users Execute Arbitrary Code

A vulnerability was reported in Microsoft Internet Explorer. A remote user can cause arbitrary code to be executed on the target user's system.

December 28, 2012
V-057: eXtplorer "ext_find_user()" Authentication Bypass Vulnerability

A vulnerability has been reported in eXtplorer, which can be exploited by malicious people to bypass certain security restrictions.

December 27, 2012
V-056: FreeType BDF Glyph Processing Buffer Overflow Vulnerability

Several vulnerabilities were reported in FreeType. A remote user can cause arbitrary code to be executed on the target user's system.

December 26, 2012
V-055: Firefly Media Server Null Pointer Dereference Lets Remote Users Deny Service

A vulnerability was reported in Firefly Media Server

December 25, 2012
V-054: IBM WebSphere Application Server for z/OS Arbitrary Command Execution Vulnerability

A vulnerability was reported in the IBM HTTP Server component 5.3 in IBM WebSphere Application Server (WAS) for z/OS

December 24, 2012
V-053: Adobe Shockwave player installs Xtras without prompting

A vulnerability was reported in Adobe Shockwave.

December 21, 2012
V-052: Drupal Core Access Bypass and Arbitrary PHP Code Execution Vulnerabilities

Drupal Core Multiple vulnerabilities

December 20, 2012
V-051: Oracle Solaris Java Multiple Vulnerabilities

Oracle has acknowledged multiple vulnerabilities in Java included in Solaris.

December 19, 2012
V-050: IBM InfoSphere Information Server Multiple Vulnerabilities

Multiple vulnerabilities have been reported in IBM InfoSphere Information Server

December 18, 2012
V-049: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code

Two vulnerabilities were reported in RealPlayer.