You are here

Home » Office of the Chief Information Officer » JC3 High Impact Assessment Bulletins

JC3 High Impact Assessment Bulletins

November 2, 2012
V-015: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Local Users Bypass the Screen Lock, and Applications Obtain Kernel Address Information

Three vulnerabilities were reported in Apple iOS.

November 1, 2012
V-014: Cisco Prime Data Center Network Manager JBoss RMI Services Let Remote Users Execute Arbitrary Commands

A vulnerability was reported in Cisco Prime Data Center Network Manager.

October 31, 2012
V-013: EMC Avamar Client for VMware Discloses Server Password to Local Users

A vulnerability was reported in EMC Avamar Client for VMware.

October 29, 2012
V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code

PROBLEM: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code

October 26, 2012
V-011: IBM Tivoli Monitoring Web Server HTTP TRACE/TRACK Support Lets Remote Users Obtain Potentially Sensitive Information

A vulnerability was reported in IBM Tivoli Monitoring.

October 25, 2012
V-010: 3Com, HP, and H3C Switches SNMP Configuration Lets Remote Users Take Administrative Actions

A vulnerability was reported in 3Com, HP, and H3C Switches.

October 24, 2012
V-009: Adobe Shockwave Player Buffer Overflows and Array Error Lets Remote Users Execute Arbitrary Code

Several vulnerabilities were reported in Adobe Shockwave.

October 19, 2012
V-006: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service

Two vulnerabilities were reported in CA ARCserve Backup. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions.

October 17, 2012
V-004: Oracle Critical Patch Update Advisory - October 2012

October 2012 Critical Patch Update, security vulnerability fixes for proprietary components of Oracle Linux will be announced in Oracle Critical Patch Updates.

October 16, 2012
V-003: Suse Update For Mozillafirefox - Critical

An update that fixes 25 vulnerabilities is now available.