Threat Level: green Handler on Duty: Manuel Pelaez

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Flurry of Security Advisories from CISCO

Published: 2008-09-24
Last Updated: 2008-09-24 18:43:56 UTC
by Deborah Hale (Version: 1)
0 comment(s)

Cisco has released a number of Security Advisories for numerous products and IOS's today.  We are in the process of reviewing the advisories and will post a recap later.  For now you can take a look at the advisories at CISCO's website at:


www.cisco.com/en/US/products/products_security_advisories_listing.html.

 

0 comment(s)

Firefox 3.0.2 Released

Published: 2008-09-24
Last Updated: 2008-09-24 03:23:26 UTC
by David Goldsmith (Version: 1)
0 comment(s)

Firefox 3.0.2 was released today. The release notes are available here.

It addresses 5 security vulnerabilities:

  • MFSA-2008-40 - forced mouse drag
  • MFSA-2008-41 - Privilege escalation via XPCnativeWrapper pollution
  • MFSA-2008-42 - Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17)
  • MFSA-2008-43 - BOM characters stripped from JavaScript before execution
  • MFSA-2008-44 - resource: traversal vulnerabilities

Mozilla considers the impact of the -41 and -42 issues to be critical, the -43 and -44 issues to be moderate and the -40 issue to be low.

David Goldsmith
SANS / ISC Handler

Keywords:
0 comment(s)
Diary Archives