Security Bulletin

RISK: High Risk

Microsoft DirectShow Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that Microsoft DirectShow parses specially crafted JPEG image files. The vulnerability could allow remote code execution if a user opens a specially crafted image file. An attacker who successfully exploited this vulnerability could gain the same user rights as...

Last Update Date: 12 Mar 2014 12:35 Release Date: 12 Mar 2014 3182 Views

RISK: High Risk

Apple iOS Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple iOS, which can be exploited by malicious people to conduct spoofing attacks, disclose potentially sensitive information, bypass certain security restrictions, and compromise a vulnerable device.The Configuration Profiles component does not properly verify expiration dates...

Last Update Date: 12 Mar 2014 12:33 Release Date: 12 Mar 2014 3332 Views

RISK: High Risk

Apple TV Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple TV, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, and compromise a vulnerable device.An error exists when handling code signature validation of text relocation instructions in...

Last Update Date: 12 Mar 2014 12:33 Release Date: 12 Mar 2014 3188 Views

RISK: High Risk

Google Chrome Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Google Chrome, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system. A use-after-...

Last Update Date: 12 Mar 2014 12:32 Release Date: 12 Mar 2014 3233 Views

RISK: High Risk

Adobe Flash Player Multiple Vulnerabilities

Two vulnerabilities have been identified in Adobe Flash Player, which can be exploited by malicious people to disclose potentially sensitive information and bypass certain security restrictions.An unspecified error can be exploited to bypass the same-origin policy.Another unspecified error can be exploited to disclose...

Last Update Date: 12 Mar 2014 12:32 Release Date: 12 Mar 2014 3317 Views

RISK: High Risk

Microsoft Internet Explorer Multiple Memory Corruption Vulnerabilities

Remote code execution vulnerabilities exist when Internet Explorer improperly accesses objects in memory. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.

Last Update Date: 12 Mar 2014 12:31 Release Date: 12 Mar 2014 3450 Views

RISK: Medium Risk

Joomla CMS Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Joomla, which can be exploited to conduct SQL injection and cross site scripting.

Last Update Date: 12 Mar 2014 Release Date: 10 Mar 2014 3236 Views

RISK: Medium Risk

eClass SQL injection vulnerability

A SQL injection vulnerability has been identified in eClass IP (for secondary schools) and eClass Junior (for primary schools), which can be exploited to extract information from the database.

Last Update Date: 11 Mar 2014 14:27 Release Date: 11 Mar 2014 3677 Views

RISK: Medium Risk

FFmpeg Multiple Vulnerabilities

Multiple vulnerabilities have been identified in FFmpeg, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise an application using the library.An error in the "tak_decode_frame()" function (libavcodec/takdec.c) can be exploited...

Last Update Date: 11 Mar 2014 10:30 Release Date: 11 Mar 2014 3214 Views

RISK: Medium Risk

Wireshark Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. An error within the NFS dissector can be exploited to cause a crash. An error within the M3UA dissector...

Last Update Date: 11 Mar 2014 10:24 Release Date: 11 Mar 2014 3130 Views