Homeland Secure IT Alert for Thursday, March 10, 2011
It has been patch city this past week…
Let’s start off with the Mac stuff for a change… Apple Mac OS X 10.5.x (Leopard) and 10.6.x (Snow Leopard) are the subject of two Apple security advisories which warn of 16 vulnerabilities in OS X’s Java components. Apple simply states the worst case scenario, that by luring a person using a vulnerable computer to a website containing a malicious Java applet, an attacker can exploit some of these Java flaws to either execute code or even elevate privileges on your OS X computer. In MOST cases an attacker would gain privileges given to the currently logged on user, which doesn’t include root/administrator access in OS X. Still, the threat is real enough that you should not hesitate to update as quickly as possible…..
Don’t worry Microsoft Windows users, there’s something for you too! Sure don’t want you feeling left out.
Patch Tuesday addressed code execution and “insecure library loading” vulnerabilities on ALL CURRENT versions of the Windows operating system.The critical update is MS11-015 an important update is available that addresses Remote Desktop: MS11-017 It is recommended that you apply these patches ASAP…
Groovy! Okay, not so groovy… If you are using Microsoft Groove 2007, there is a service update available for you that you should deploy. Not deploying said patch could expose you to nastiness if you are enticed to open a malicious document. Don’t know what Groove is? Don’t worry, many people don’t. Microsoft Groove 2007 (now called Microsoft SharePoint Workspace) is a document collaboration system that allows you to share a workspace with a team of online and offline members. When you make changes to documents, the changes synchronize over the shared workspace. Groove ships with Microsoft Office 2007 Enterprise and Ultimate editions. Install the update
As always, it is best to insure your anti-virus is current… Trend Micro is our favorite!
If you require assistance in the Greenville / Upstate area with your computer or network security, please call us at 864.990.4748 or email firstname.lastname@example.org