Archive for February, 2014

Update to iphone/ipad IOS 7 and Macintosh OS-X to address SSL vulnerability

Wednesday, February 26th, 2014

During the week of February 17, a vulnerability was identified in iOS 7 and also in OS-X version 10.9.1 that could allow SSL connections to be captured or modified. Apple provided a fix to both iOS 7 and iOS 6 systems on February 21. Details are available from http://support.apple.com/kb/HT6147 (iOS 7) http://support.apple.com/kb/HT6146 (iOS 6) As […]

Zero day exploit for Internet Explorer versions 9 and 10

Thursday, February 20th, 2014

On Friday, February 14, a zero day exploit was identified for Internet Explorer versions 9 and 10 which run on Windows Vista and Windows 7 respectively.  Malicious content was identified on a Veteran of Foreign Wars website.  The malicious code has been subsequently removed but other examples of the code are expected.  The vulnerability is […]

Advance notice of Microsoft February patches – to be released on Feb 11

Thursday, February 6th, 2014

Microsoft has recently provided advance notice of the patches that are scheduled to be released on Tuesday, February 11. The details are available at – https://technet.microsoft.com/en-us/security/bulletin/ms14-feb . There are a total of five patches for February; two of which are classified as CRITICAL. The two patches designated as critical could allow remote code execution if […]

Patches released for Flash and Firefox on Feb 4

Wednesday, February 5th, 2014

There were updates to two products yesterday that were somewhat out of the norm. Please patch accordingly.Flash – version 12.0.0.44 (Mac and Windows) released on February 4 http://helpx.adobe.com/security/products/flash-player/apsb14-04.html version 12.0.0.44 for Internet Explorer 10 released on February 4   http://technet.microsoft.com/en-us/security/advisory/2755801 Firefox – versions 27.0 and ESR 24.3 released on February 4 http://www.mozilla.org/en-US/firefox/27.0/releasenotes/