Download the barometer widget here
Today's alert level: Green
Last update at: 15-03-2010 17:32:19 GMT
Links
The following links refer to sites that provide vulnerability/patch information that can used to counter identified attacks.
CSIRTUK advisories
CSIRTUK advisory information
03/10/2010 03:50 PM
Microsoft has issued an advisory that they are investigating new, public reports of a vulnerability in Internet Explorer 6 and Internet Explorer 7. This advisory contains information about which versions of Internet Explorer are vulnerable as well as workarounds and mitigations for this issue.
03/10/2010 12:00 PM
Microsoft has released updates to address a number of vulnerabilities in Windows and Office.
02/17/2010 11:29 AM
A critical vulnerability has been identified in Adobe Reader 9.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3 for Windows and Macintosh, and Adobe Reader 8.2 and Acrobat 8.2 for Windows and Macintosh. The vulnerability could subvert the domain sandbox and make unauthorized cross-domain requests.
02/10/2010 01:00 AM
This bulletin summary lists security bulletins released for February 2010.
02/04/2010 01:00 AM
Microsoft is investigating a publicly reported vulnerability in Internet Explorer for customers running Windows XP or who have disabled Internet Explorer Protected Mode. Investigation so far has shown that if a user is using a version of Internet Explorer that is not running in Protected Mode an attacker may be able to access files with an already known filename and location.
01/21/2010 01:00 AM
This bulletin summary lists the out-of-band security bulletin released on January 21, 2010. CPNI advise considering application of the patch as soon as it is possible to do so.
01/19/2010 01:00 AM
00Microsoft is investigating reports of limited, targeted attacks against customers of Internet Explorer. Investigation so far has shown that Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4, and Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8 on supported editions of Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 are vulnerable.0
01/13/2010 01:00 AM
0This Microsoft Bulletin Summary lists security bulletins released for January 2010.0
12/09/2009 01:00 AM
0Details of Microsoft's December software update concerning a number of vulnerabilities in various products.0
12/02/2009 01:00 AM
Clientless SSL VPN products break web browser domain-based security models
11/24/2009 01:00 AM
A vulnerability in Microsoft Internet Explorer versions 6 and 7 was published on the 20th of November.If successfully exploited, this vulnerability could allow arbitrary code execution or cause a denial of service (DoS) against the local machine. Microsoft Internet Explorer version 8 is not affected.
11/11/2009 01:00 AM
Details of Microsoft's November software update concerning a number of vulnerabilities in various products.
10/14/2009 11:46 AM
Adobe has released Security bulletin APSB09-15, which describes multiple vulnerabilities affecting Adobe Reader and Acrobat.
10/14/2009 11:32 AM
Details of Microsoft's October software update concerning a number of vulnerabilities in various products.
10/01/2009 05:00 PM
On September 8, Microsoft announced that a vulnerability in the SMB v2 protocol could allow remote code execution on Windows Vista, Windows Server 2008 and Windows 7 RC operating systems; there is now stable exploit code in the wild.
00
09/24/2009 06:50 PM
Cisco distribution of IOS Security Advisory bundled publication includes eleven Security Advisories.
09/23/2009 02:35 PM
Apple has released iTunes 9.0.1 addressing a vulnerability that may lead to an unexpected application termination or arbitrary code execution.
09/11/2009 01:00 PM
Microsoft bulletin that summarises their advisories released for September 2009.
09/11/2009 12:29 PM
Mac OS X v10.6.1 is now available and addresses the multiple vulnerabilities in Adobe Flash Player plug-in.
09/11/2009 12:18 PM
Description of Apple's Security Update 2009-005
Internet Barometer 2.0 by Interoute Communications Ltd