JC3 Medium Impact Assessment Bulletins | Department of Energy

You are here

JC3 Medium Impact Assessment Bulletins

December 26, 2012

V-055: Firefly Media Server Null Pointer Dereference Lets Remote Users Deny Service

A vulnerability was reported in Firefly Media Server

December 24, 2012

V-053: Adobe Shockwave player installs Xtras without prompting

A vulnerability was reported in Adobe Shockwave.

December 21, 2012

V-052: Drupal Core Access Bypass and Arbitrary PHP Code Execution Vulnerabilities

Drupal Core Multiple vulnerabilities

December 19, 2012

V-050: IBM InfoSphere Information Server Multiple Vulnerabilities

Multiple vulnerabilities have been reported in IBM InfoSphere Information Server

December 18, 2012

V-049: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code

Two vulnerabilities were reported in RealPlayer.

December 17, 2012

V-048: Cisco Wireless Lan Controller Cross-Site Request Forgery Vulnerability

A vulnerability was reported in Cisco Wireless LAN Controller.

December 14, 2012

V-047: IBM Lotus Foundation Multiple Cross Site Scripting

Two vulnerabilities have been reported in IBM Lotus Foundations.

December 10, 2012

V-043: Perl Locale::Maketext Module '_compile()' Multiple Code Injection Vulnerabilities

Two vulnerabilities have been reported in Locale::Maketext module for Perl

December 6, 2012

V-041: Red Hat CloudForms Multiple Vulnerabilities

Multiple vulnerabilities have been reported in Red Hat CloudForms

December 4, 2012

V-039: Samsung and Dell printers Firmware Backdoor Unauthorized Access Vulnerability

Samsung has issued a security advisory and an optional firmware update for all current Samsung networked laser printers and multifunction devices to enhance Simple Network Management Protocol (SNMP) security.