You are here

Home » Office of the Chief Information Officer » JC3 Medium Impact Assessment Bulletins

JC3 Medium Impact Assessment Bulletins

January 4, 2013
V-062: Asterisk Two Denial of Service Vulnerabilities

Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service).

January 3, 2013
V-061: IBM SPSS Modeler XML Document Parsing Vulnerability

A vulnerability has been reported in IBM SPSS Modeler.

January 2, 2013
V-060: VLC Media Player Buffer Overflow in HTML Subtitle Parser Lets Remote Users Execute Arbitrary Code

Some vulnerabilities have been reported in VLC Media Player

December 28, 2012
V-057: eXtplorer "ext_find_user()" Authentication Bypass Vulnerability

A vulnerability has been reported in eXtplorer, which can be exploited by malicious people to bypass certain security restrictions.

December 26, 2012
V-055: Firefly Media Server Null Pointer Dereference Lets Remote Users Deny Service

A vulnerability was reported in Firefly Media Server

December 24, 2012
V-053: Adobe Shockwave player installs Xtras without prompting

A vulnerability was reported in Adobe Shockwave.

December 21, 2012
V-052: Drupal Core Access Bypass and Arbitrary PHP Code Execution Vulnerabilities

Drupal Core Multiple vulnerabilities

December 19, 2012
V-050: IBM InfoSphere Information Server Multiple Vulnerabilities

Multiple vulnerabilities have been reported in IBM InfoSphere Information Server

December 18, 2012
V-049: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code

Two vulnerabilities were reported in RealPlayer.

December 17, 2012
V-048: Cisco Wireless Lan Controller Cross-Site Request Forgery Vulnerability

A vulnerability was reported in Cisco Wireless LAN Controller.