http://www.cert-ist.com/eng/ Cert-IST = Computer Emergency Response Team - Industry, Services and Tertiary. Cert-IST is a center for alert and reaction to computer attacks dedicated to French enterprises. The Cert-IST is a not for profit association, which goal is to provide to its adherents risk prevention services and assistance for incident handling. en Copyright © 1999-2005 Cert-IST webmaster@cert-ist.com http://www.cert-ist.com/images/site/logocert_144x78.jpg http://www.cert-ist.com/eng/ 144 78 The CERT for France Industry, Services and Tertiary sector https://wws.cert-ist.com/fast-cgi/DG/Danger.cgi?Alias=cert-ist_dg-2010_002 [high] Microsoft and several antivirus vendors have warned their commmunity regarding a malicious PDF file exploiting the Adobe Reader and Acrobat vulnerability in the wild. In addition an exploit codes for ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.136 [medium] A vulnerability has been discovered in the "libpng" library on Linux/Unix systems. It allows a malicious PNG image to cause an application using a vulnerable version of "libpng" to hang or to cause a ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.135 [medium] Several vulnerabilities have been discovered in IBM "WebSphere Application Server". One of them allows a remote malicious person to cause a denial of service, the impact and attack vectors of the othe ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.092 [high] Two vulnerabilities have been discovered in Adobe Reader and Adobe Acrobat 8.x and 9.x. They allow a malicious remote person, through a specially crafted PDF file sent by e-mail or embedded on a web s ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.134 [medium] A vulnerability has been discovered in Skype for Windows. It allows a remote malicious person to bypass some security restrictions and potentially to gain access to sensitive information. Note: A Pro ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.133 [medium] Multiple vulnerabilities (16) have been found in the Safari web browser. They allow a remote malicious person: to get access to potentially sensitive information, to bypass security restrictions, to e ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.132 [medium] A vulnerability has been discovered in the Debian package management program dpkg. It allows a crafted package to bypass security restrictions. ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.131 [medium] A vulnerability has been discovered in phpBB version 3.0.7. It allows a malicious user to bypass security restrictions and to access potentially sensitive information. ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.130 [medium] A vulnerability has been discovered in the "Gnu Tar" and "GNU cpio" archive utilities on Linux/Unix systems. It allows a malicious person to remotely perform harmful actions on a vulnerable system. ... https://wws.cert-ist.com/fast-cgi/AV/Avis.cgi?ref=CERT-IST/AV-2010.129 [very-high] A vulnerability has been discovered in the "Milter" plugin for SpamAssassin. It allows a malicious person to remotely take the full control of a vulnerable sserver. Note: An exploit code for this ...