You are here

JC3 High Impact Assessment Bulletins

RSS
August 9, 2013
V-215: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities

The vulnerabilities are reported in versions 1.4.1 and prior

August 8, 2013
V-214: Mozilla Firefox Multiple Vulnerabilities

The vulnerabilities are reported in versions prior to 23.0.

August 5, 2013
V-211: IBM iNotes Multiple Vulnerabilities

IBM iNotes has two cross-site scripting vulnerabilities and an ActiveX Integer overflow vulnerability

August 2, 2013
V -209:Cisco WAAS (Wide Area Application Services) Arbitrary Code Execution Vulnerabilities

Cisco Wide Area Application Services (WAAS) when configured as Central Manager (CM), contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the affected system.

August 1, 2013
V-208: Google Chrome Multiple Vulnerabilities

Some vulnerabilities have been reported in Google Chrome which allows attackers to access and compromise a user's system.

July 18, 2013
V-200: Apache Struts DefaultActionMapper Redirection and OGNL Security Bypass Vulnerabilities

The vulnerabilities can be exploited by malicious people to conduct spoofing attacks and bypass certain security restrictions

July 11, 2013
V-197: Adobe ColdFusion 10 WebSockets Security Bypass Vulnerability

The vulnerability is caused due to an unspecified error and can be exploited to invoke public methods on ColdFusion Components (CFC) using WebSockets

July 10, 2013
V-196: Microsoft Security Bulletin Advance Notification for July 2013

Microsoft Security Bulletin Advance Notification for July 2013. Microsoft has posted 6 Critical Bulletin and 1 Important Bulletins. Bulletins with the Maximum Severity Rating and Vulnerability Impact of "Critical" July allow remote execution of code. Microsoft will host a webcast to address customer questions on the security bulletins on July 10, 2013, at 11:00 AM Pacific Time (US & Canada).

July 3, 2013
V-191: Apple Mac OS X Multiple Vulnerabilities

The vulnerabilities are caused due to a bundled version of QuickTime