Patches for November from Microsoft and Adobe

Microsoft has just released the patches for November. The details are available at  http://technet.microsoft.com/en-us/security/bulletin/ms15-nov There are a total of twelve bulletins being released. Four of the bulletins being patched are identified as CRITICAL and the remainder are classified as IMPORTANT. However, one of the bulletins classified as IMPORTANT by Microsoft (MS15-116) is identified as being […]

Patches released from Microsoft on Oct 13

Microsoft has just released the patches for October. The details are available at  http://technet.microsoft.com/en-us/security/bulletin/ms15-oct There are a total of six bulletins being released. Three of the bulletins being patched are identified as CRITICAL and the remainder are classified as IMPORTANT. However, one of the bulletins classified as IMPORTANT by Microsoft (MS15-110) is identified as being […]

Microsoft patches released on September 8

Microsoft has just released the patches for September. The details are available at  http://technet.microsoft.com/en-us/security/bulletin/ms15-sep There are a total of twelve bulletins being released. Five of the vulnerabilities being patched are identified as CRITICAL and the remainder are classified as IMPORTANT. Vulnerabilities being patched in bulletins MS15-094, MS15-095 and MS15-097 through MS15-100 could allow remote code […]

Start of ISAAC cycle and Server Management Program Content

The beginning of the ISAAC risk assessment process coincides with the annual updating of various documents associated with the Server Management Program effort. If you or if you have departmental staff that run server systems, they should be aware of the process of updating the various relevant content in the AgriLife SMP application – https://agrilife-smp.tamu.edu/index.php […]

Out of band patch issued for Internet Explorer – August 18

Microsoft released an out of band patch for a remote code execution vulnerability in Internet Explorer late in the day on August 18. Please see the text below and also the following URL. From what I can tell this is being actively exploited as of this time. Please apply the patch to workstations as soon […]

Microsoft patches for August – released on August 11

Microsoft has just released the patches for August. The details are available at http://technet.microsoft.com/en-us/security/bulletin/ms15-aug There are a total of fourteen bulletins being released. Three of which are designated as CRITICAL for Windows operating systems prior to Windows 10, one is designated as CRITICAL for Edge web browser associated with Windows 10 (MS15-091) and the remaining […]

Zero day exploit for PDF.Js (javascript) in Firefox versions prior to 39.0.3

A zero day exploit that uses the pdf .js (Java script PDF viewer) to extract data from files commonly used by developers ( such as history files for MySQL and PgSQL, and configuration files for filezilla and PSI+) is active for Firefox version 39.0.2. For that reason Firefox should be updated as soon as possible […]

International travel with Mobile Phones –

For those of you that travel internationally, please see the following set of best practices for cell phones from the State Department – Overseas Security Advisory Council. http://agrilife.org/it/files/2015/08/osac_traveling_0.pdf

Flash update released on July 14 – zero days active

Adobe released an updated version of flash on July 14 (yes, the flash version released on July 8 has already been superseded). The new version is 18.0.0.209.  Please see the following URLs for details https://helpx.adobe.com/security/products/flash-player/apsb15-18.html https://nakedsecurity.sophos.com/2015/07/14/did-firefox-listen-to-facebook-and-just-kill-flash-no-but-theres-another-patch/

Microsoft patches for July – to be released on July 14

Microsoft has just released the patches for July. The details are available at http://technet.microsoft.com/en-us/security/bulletin/ms15-Jul There are a total of fourteen bulletins ( including MS15-058), four of which are designated as CRITICAL and the remaining ten are designated as IMPORTANT. The vulnerabilities being patched in bulletins MS15-058, and MS15-065/MS15-70 could allow remote code execution. These are […]