Public Safety Canada Cyber Warnings

Public Safety Canada Cyber Warnings Public Safety Canada Cyber Warnings http://www.publicsafety.gc.ca/app_support/xml/ps_ccirc_e.xml COPYRIGHT en-ca Fri, 20 Aug 2010 13:00:36 -0400 web@ps.gc.ca Fri, 20 Aug 2010 13:00:04 -0400 1 web@ps.gc.ca FeedForAll v2.0 (2.0.2.9) http://www.feedforall.com AV10-033: Adobe Reader/Acrobat Critical Vulnerabilities The purpose of this advisory is to bring attention to Critical vulnerabilities in Adobe Reader and Acrobat. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-033-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-033-eng.aspx Fri, 20 Aug 2010 13:00:04 -0400 AV10-032: Cisco IOS Software TCP Denial-of-service Vulnerability The purpose of this advisory is to raise awareness of a TCP denial-of-service (DoS) vulnerability in Cisco IOS Software version 15.1(2)T. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-032-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-032-eng.aspx Fri, 13 Aug 2010 17:37:32 -0400 AV10-031: Multiple Vulnerabilities in the Cisco Application Control Engine The purpose of this advisory is to raise awareness of multiple vulnerabilities in the Cisco Application Control Engine Module and the Cisco ACE 4710 Application Control Engine. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-031-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-031-eng.aspx Thu, 12 Aug 2010 18:31:47 -0400 AV10-030: Multiple Vulnerabilities in Adobe Flash Player and AIR The purpose of this advisory is to raise awareness of multiple critical vulnerabilities in Adobe Flash Player and Adobe Integrated Runtime (AIR). http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-030-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-030-eng.aspx Wed, 11 Aug 2010 18:41:11 -0400 AV10-029: Microsoft Security Bulletin Summary for August 2010 The purpose of this advisory is to bring attention to the monthly Microsoft security bulletin which addresses 14 vulnerabilities and of those, 8 are considered critical. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-029-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-029-eng.aspx Tue, 10 Aug 2010 21:24:39 -0400 AV10-028: Multiple Vulnerabilities in HP ProCurve The purpose of this advisory is to raise awareness of multiple vulnerabilities in HP ProCurve Switches 1800, 2610, 2650 and 2626. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-028-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-028-eng.aspx Fri, 6 Aug 2010 13:07:43 -0400 AV10-027: Multiple Vulnerabilities in Cisco Products The purpose of this advisory is to raise awareness of multiple vulnerabilities in the Cisco ASA 5500 Series and the Cisco Firewall Services Module, which could cause a denial of service (DoS). http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-027-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-027-eng.aspx Thu, 5 Aug 2010 16:08:50 -0400 AV10-026: Multiple Vulnerabilities in HP OpenView Network Node Manager The purpose of this advisory is to raise awareness of multiple remotely exploitable vulnerabilities in some versions of HP OpenView Network Node Manager. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-026-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-026-eng.aspx Tue, 3 Aug 2010 18:08:33 -0400 AV10-025: Out of Band Microsoft Security Bulletin - Vulnerability in Windows Shell Could Allow Remote Code Execution The purpose of this advisory is to bring attention to the out-of-band and critical Microsoft security bulletin MS10-046 addressing Windows Shell vulnerability. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-025-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-025-eng.aspx Mon, 2 Aug 2010 17:30:40 -0400 AV10-024: Vulnerability in Multiple Cisco Products The purpose of this advisory is to raise awareness of a vulnerability in multiple Cisco products. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-024-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-024-eng.aspx Thu, 29 Jul 2010 21:31:00 -0400 AV10-023: Siemens SIMATIC "WinCC" or Siemens "Step 7” software vulnerabilities The purpose of this advisory is to raise awareness of recently discovered malware targeting Siemens SIMATIC "WinCC" or Siemens "Step7” control system software. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-023-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-023-eng.aspx Tue, 27 Jul 2010 13:01:41 -0400 IN10-002: Cyber Security Awareness: Windows XP SP2 End of Product Life The purpose of this information note is to remind existing Microsoft XP SP2 users of the product end of life, effective July 13, 2010 and provide upgrade considerations when patching to Windows XP SP3. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/in10-002-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/in10-002-eng.aspx Tue, 20 Jul 2010 12:05:48 -0400 AV10-022: Cisco Security Advisory for Industrial Ethernet 3000 Series Switches The purpose of this advisory is to bring attention to a vulnerability in Cisco Industrial Ethernet 3000 Series switches. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-022-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-022-eng.aspx Wed, 14 Jul 2010 18:08:57 -0400 AV10-021: Oracle Critical Patch Update - July 2010 The purpose of this advisory is to bring attention to the following critical patch update for Oracle products. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-021-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-021-eng.aspx Wed, 14 Jul 2010 17:54:31 -0400 AV10-020: Microsoft Security Bulletin Summary for July 2010 The purpose of this advisory is to bring attention to the monthly Microsoft security bulletin which addresses 3 Critical and 1 important vulnerability. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-020-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-020-eng.aspx Tue, 13 Jul 2010 19:14:50 -0400 AV10-019: Critical Security Update for Adobe Reader and Acrobat The purpose of this advisory is to bring attention to an accelerated release of the quarterly update of Adobe Reader and Acrobat 9.3.3 and 8.2.3 which addresses CVE-2010-1297. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-019-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-019-eng.aspx Wed, 30 Jun 2010 17:29:49 -0400 AV10-018: Cisco ASA HTTP Response Splitting Vulnerability The purpose of this advisory is to bring attention to a vulnerability in Cisco ASA. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-018-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-018-eng.aspx Mon, 28 Jun 2010 19:17:58 -0400 AL10-002: Critical security Update for Flash Player The purpose of this Alert is to bring attention to an out of schedule critical security update for Flash Player. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/al10-002-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/al10-002-eng.aspx Fri, 11 Jun 2010 13:23:42 -0400 AV10-017: Microsoft Security Bulletin Summary for June 2010 The purpose of this advisory is to bring attention to the monthly Microsoft security bulletin which addresses 3 Critical and 7 important vulnerabilities. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-017-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-017-eng.aspx Tue, 8 Jun 2010 18:58:43 -0400 AV10-016: Novell eDirectory Multiple Vulnerabilities The purpose of this advisory is to bring attention to vulnerabilities in Novell eDirectory. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-016-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-016-eng.aspx Mon, 7 Jun 2010 13:55:32 -0400 AV10-015: Multiple Vulnerabilities in Cisco Network Building Mediator The purpose of this advisory is to bring attention to multiple vulnerabilities in Cisco Network Building Mediator (NBM), which, if exploited, could affect the security and integrity of critical building services such as ventilation, lighting, security and energy supply. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-015-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-015-eng.aspx Thu, 27 May 2010 18:48:52 -0400 AV10-014: Microsoft Security Bulletin for the Month of May The purpose of this advisory is to bring attention to the monthly Microsoft security bulletin which addresses 2 Critical vulnerabilities. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-014-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-014-eng.aspx Tue, 11 May 2010 18:55:05 -0400 AV10-013: Vulnerability in Microsoft SharePoint Could Allow Elevation of Privilege The purpose of this advisory is to bring attention to a possible vulnerability in Microsoft Windows SharePoint that could result in elevation of privilege. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-013-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-013-eng.aspx Fri, 30 Apr 2010 18:37:21 -0400 AV10-010: Microsoft Security Bulletin for the Month of April - Update The purpose of this advisory is to bring attention to the re-released Microsoft MS10-025 Security Bulletin. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-010-1-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-010-1-eng.aspx Tue, 27 Apr 2010 19:09:59 -0400 AV10-012: Oracle Critical Patch Update Advisory - April 2010 The purpose of this advisory is to bring attention to the following critical patch update for Oracle products. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-012-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-012-eng.aspx Wed, 14 Apr 2010 14:31:36 -0400 AV10-011: Security Update for critical vulnerabilities in Adobe Reader and Acrobat The purpose of this advisory is to bring attention to critical vulnerabilities in Adobe Reader and Acrobat. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-011-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-011-eng.aspx Wed, 14 Apr 2010 13:51:31 -0400 AV10-010: Microsoft Security Bulletin for the Month of April The purpose of this advisory is to bring attention to the monthly Microsoft security bulletin which address 11 vulnerabilities, five rated Critical. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-010-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-010-eng.aspx Tue, 13 Apr 2010 21:15:45 -0400 AV10-009: Out of Band Microsoft Security Advisory - Vulnerability in Internet Explorer Could Allow Remote Code Execution The purpose of this advisory is to bring attention to an out-of-band Microsoft security advisory to address both publicly and privately reported vulnerabilities in Internet Explorer. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-009-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-009-eng.aspx Tue, 30 Mar 2010 17:54:20 -0400 AV10-008: Microsoft Security Bulletin for the Month of March The purpose of this advisory is to bring attention to the two security bulletins, rated as Important, for March which address 8 vulnerabilities. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-008-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-008-eng.aspx Tue, 9 Mar 2010 18:54:50 -0500 IN10-001: Security Awareness: SEO Poisoning using Olympic Themes The purpose of this information note is to promote user awareness of a technique called Search Engine Optimization (SEO) poisoning. This technique is being used in recent internet search queries on the 2010 Vancouver Olympics. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/in10-001-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/in10-001-eng.aspx Sat, 27 Feb 2010 17:07:08 -0500 AV10-007: Multiple Vulnerabilities in Adobe Reader, Acrobat, Flash Player and Air The purpose of this advisory is to bring attention to multiple vulnerabilities in Adobe Reader, Acrobat, Flash Player and Air. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-007-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-007-eng.aspx Tue, 16 Feb 2010 22:34:32 -0500 AV10-006: Microsoft Security Bulletin for the Month of February The purpose of this advisory is to bring attention to the following 13 vulnerabilities (5-critical, 7-important, 1-moderate) in some Microsoft products. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-006-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-006-eng.aspx Tue, 9 Feb 2010 23:47:35 -0500 AL10-001: Microsoft Security Bulletin MS10-002 - Critical The purpose of this Alert is to make system owners aware that a critical patch has been issued by Microsoft outside of the normal monthly patch cycle, to address a recent publically reported vulnerability in Internet Explorer that was used in targeted attacks on the Internet. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/al10-001-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/al10-001-eng.aspx Thu, 21 Jan 2010 19:26:54 -0500 AV10-005: Multiple Vulnerabilities in Adobe Reader and Acrobat The purpose of this advisory is to bring attention to multiple critical vulnerabilities in Adobe Reader and Acrobat. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-005-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-005-eng.aspx Thu, 14 Jan 2010 20:11:16 -0500 AV10-004: Oracle Critical Patch Update Advisory - January 2010 The purpose of this advisory is to bring attention to the following critical patch update for Oracle products. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-004-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-004-eng.aspx Wed, 13 Jan 2010 19:24:20 -0500 AV10-003: Microsoft Security Bulletin for the Month of January The purpose of this advisory is to bring attention to the following vulnerability (critical) in some Microsoft products. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-003-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-003-eng.aspx Tue, 12 Jan 2010 21:37:57 -0500 AV10-002: JUNOS (Juniper) Flaw Exposes Core Routers to Kernel Crash The purpose of this advisory is to bring attention to a vulnerability which affects JUNOS (Juniper). http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-002-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-002-eng.aspx Fri, 8 Jan 2010 14:01:52 -0500 AV10-001: USB Flash Drive Password Validation Flaw Lets Local Users Bypass Access Controls The purpose of this advisory is to bring attention to a vulnerability which affects 'secure' USB flash drives, affecting multiple vendors. http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-001-eng.aspx http://www.publicsafety.gc.ca/prg/em/ccirc/2010/av10-001-eng.aspx Fri, 8 Jan 2010 08:52:24 -0500