You are here

JC3 High Impact Assessment Bulletins

RSS
January 1, 2013
V-059: MoinMoin Multiple Vulnerabilities

Multiple vulnerabilities have been reported in MoinMoin, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system and by malicious people to manipulate certain data.

December 31, 2012
V-058: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw Lets Remote Users Execute Arbitrary Code

A vulnerability was reported in Microsoft Internet Explorer. A remote user can cause arbitrary code to be executed on the target user's system.

December 27, 2012
V-056: FreeType BDF Glyph Processing Buffer Overflow Vulnerability

Several vulnerabilities were reported in FreeType. A remote user can cause arbitrary code to be executed on the target user's system.

December 25, 2012
V-054: IBM WebSphere Application Server for z/OS Arbitrary Command Execution Vulnerability

A vulnerability was reported in the IBM HTTP Server component 5.3 in IBM WebSphere Application Server (WAS) for z/OS

December 20, 2012
V-051: Oracle Solaris Java Multiple Vulnerabilities

Oracle has acknowledged multiple vulnerabilities in Java included in Solaris.

December 13, 2012
V-046: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code

Several vulnerabilities were reported in Adobe Flash Player.

December 12, 2012
V-045: Adobe ColdFusion Lets Local Users Bypass Sandbox Restrictions

A vulnerability was reported in Adobe ColdFusion.

December 7, 2012
V-042: Microsoft Security Bulletin Advance Notification for December 2012

Microsoft Security Bulletin Advance Notification for December 2012. Microsoft has posted 5 Critical Bulletins and 2 Important Bulletins. Bulletins with the Maximum Severity Rating and Vulnerability Impact of "Critical" may allow remote execution of code. Microsoft will host a webcast to address customer questions on the security bulletins on December 12, 2012, at 11:00 AM Pacific Time (US & Canada).

December 5, 2012
V-040: Apache Tomcat Bug Lets Remote Users Bypass Security Constraints

A vulnerability was reported in Apache Tomcat.