You are here

Home » Office of the Chief Information Officer » JC3 High Impact Assessment Bulletins

JC3 High Impact Assessment Bulletins

July 30, 2012
U-223: Bugzilla May Disclose Confidential Information to Remote Users

Two vulnerabilities were reported in Bugzilla.

July 27, 2012
U-222: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information

Multiple vulnerabilities were reported in Apple Safari.

July 26, 2012
U-221: ISC BIND 9 DNSSEC Validation CVE-2012-3817 Denial of Service Vulnerability

ISC BIND is prone to a denial-of-service vulnerability.

July 24, 2012
U-219: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords

Several vulnerabilities were reported in Symantec Web Gateway.

July 19, 2012
U-216: HP StorageWorks File Migration Agent Buffer Overflows Let Remote Users Execute Arbitrary Code

Two vulnerabilities were reported in HP StorageWorks File Migration Agent.

July 18, 2012
U-215: Oracle Critical Patch Update Advisory - July 2012

Critical Patch Updates are the primary means of releasing security fixes for Oracle products to customers with valid support contracts. They are released on the Tuesday closest to the 17th day of January, April, July and October.

July 17, 2012
U-214: HP Network Node Manager Java JDK / JRE Multiple Vulnerabilities

Vulnerabilities could be remotely exploited resulting in unauthorized information disclosure, modification, Denial of Service (DoS).

July 16, 2012
U-213: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code

Several vulnerabilities were reported in Google Chrome.

July 12, 2012
U-211: EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated Users Access Files/Directories

A vulnerability was reported in EMC Celerra/VNX/VNXe. A remote authenticated user can access files and directories on the target file system.

July 10, 2012
U-209: Microsoft Security Bulletin Advance Notification for July 2012

Microsoft Security Bulletin Advance Notification for July 2012. Microsoft has posted 3 Critical Bulletins and 6 Important Bulletins. Bulletins with the Maximum Severity Rating and Vulnerability Impact of "Critical" may allow remote execution of code. Microsoft is hosting a webcast to address customer questions on these bulletins on July 11, 2012, at 11:00 AM Pacific Time (US & Canada).