You are here

Home » Office of the Chief Information Officer » JC3 Bulletin Archive

JC3 Bulletin Archive

April 26, 2013
V-143: Fresh Java issues being exploited in the wild

Java issues are being exploited in the wild by exploit kits, with Cool and Redkit specifically being known to use these bugs, and others likely to follow shortly.

April 25, 2013
V-142: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary Code

A vulnerability was reported in Oracle Java.

April 24, 2013
V-141: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems

A vulnerability was reported in HP ElitePad 900

April 23, 2013
V-140: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information

Several vulnerabilities were reported in Apache ActiveMQ.

April 21, 2013
V-139: Cisco Network Admission Control Input Validation Flaw Lets Remote Users Inject SQL Commands

A vulnerability was reported in Cisco Network Admission Control.

April 19, 2013
V-138: Red Hat update for icedtea-web

This fixes two vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions

April 18, 2013
V-137: Apple Mac OS X update for Java

Apple has issued an update for Java for Mac OS X

April 17, 2013
V-136: Oracle Critical Patch Update Advisory - April 2013

Several vulnerabilities addressed in this Critical Patch Update affect multiple products

April 16, 2013
V-135: Cisco ASA Multiple Bugs Let Remote Users Deny Service

Several vulnerabilities were reported in Cisco ASA.

April 15, 2013
V-134: Cisco AnyConnect Secure Mobility Client Heap Overflow Lets Local Users Gain Elevated Privileges

Some vulnerabilities were reported in Cisco AnyConnect Secure Mobility Client.