Archive for February, 2013

Zero day vulnerability for Adobe Acrobat and Reader currently being exploited – Feb 14

Friday, February 15th, 2013

On February 12, several sources identified a zero-day vulnerability for all versions Adobe Acrobat and Reader that was being actively exploited.  As of February 14, Adobe had yet to provide details on when a patch was expected to be released. Mitigation practices provided by the vendor consisted of turning on the Protected View feature for […]

Advance notice of February 2013 Microsoft patches – to be released on Feb 12.

Thursday, February 7th, 2013

Microsoft has just provided advance notice of the patches to be released on Tuesday, February 12. Details are available at http://technet.microsoft.com/en-us/security/bulletin/ms13-feb  Its safe to say, it will be a significant patch month, most definitely for workstations but some also apply to servers. From what I am reading there are a total of 12 bulletins that […]

Java version 1.7.13 released on February 1 – out of band patch to address zero day exploit

Monday, February 4th, 2013

I was just made aware that Oracle released Java version 7.13 today. No resources I was aware of provided any advance notification.  As version 7.11 has vulnerabilities that are currently being exploited via rootkits that are commercially available the new version should be deployed as rapidly as possible. It can be downloaded from http://java.com/en/download/index.jsp I […]