Announcements http://www.coastal.edu/its/ Coastal Carolina University html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid994410322msolisttypehybridmsolisttemplateids1081646074 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetbodytrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtbodytablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 4232013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormalbSUBJECT Vulnerability In Oracle Java Runtime Environment Could Allow Remote Code Executionbbopopbpp classMsoNormalbnbspopopbpp classMsoNormalbOVERVIEWopopbpp classMsoNormalbopnbspopbpp classMsoNormalA vulnerability has been discovered in Oracle Java Runtime Environment JRE that can lead to remote code execution The Java Runtime Environment is used to enhance the user experience when visiting websites and is installed on most desktops and servers This vulnerability may be exploited if a user visits or is redirected to a specifically crafted web page Successful exploitation of this vulnerability does require limited user interaction and could result in an attacker gaining the same privileges as the JRE application Depending on the privileges associated with the application an attacker could execute arbitrary code in the context of the application and bypass security restrictionsbopopbpp classMsoNormalbnbspopopbpp classMsoNormalbIt should be noted that there are no patches or updates available to fix this vulnerabilityopopbpp classMsoNormalbnbspnbspopopbpp classMsoNormalbDESCRIPTIONopopbpp classMsoNormalbopnbspopbpp classMsoNormalA vulnerability has been discovered in Oracle Java Runtime Environment that can lead to remote code execution which can be used to achieve a complete Java security sandbox bypass on a target system In order to exploit this vulnerability an attacker must create a web page with a specially crafted applet designed to leverage this issue When the web page is visited the attackersupplied code is run in the context of the affected applicationopoppp classMsoNormalopnbspoppp classMsoNormalSuccessful exploitation of this vulnerability does require limited user interactionnbspa user needs tonbspaccept the risk of executing a potentially malicious Javanbspapplication when a security warning window is displayed andnbspcould result in an attacker gaining the same privileges as the JRE application Depending on the privileges associated with the application an attacker could execute arbitrary code in the context of the application and bypass security restrictionsopoppp classMsoNormalopnbspoppp classMsoNormalbSYSTEMS AFFECTEDopopbpp classMsoNormalbopnbspopbpul stylemargintop0in typediscli classMsoNormal stylemsolistl0 level1 lfo1bOracle Java Runtime Environment 7 Update 21 and prior are vulnerableopopbliulp classMsoNormal styletextindent225ptbopnbspopbpp classMsoNormalbRISKopopbpp classMsoNormalbopnbspopbpp classMsoNormalbGovernmentopopbpp classMsoNormalbopnbspopbpp classMsoNormalLarge and medium government entitiesbnbspHighopopbpp classMsoNormalSmall government entitiesbnbspHighopopbpp classMsoNormalbopnbspopbpp classMsoNormalbBusinessesopopbpp classMsoNormalbopnbspopbpp classMsoNormalLarge and medium business entitiesnbspbHighopopbpp classMsoNormalSmall business entitiesbnbspHighopopbpp classMsoNormalbopnbspopbpp classMsoNormalbHome users Highopopbpp classMsoNormalbnbspopopbpp classMsoNormalbuRecommendationsubbopopbpp classMsoNormal styletextindent225ptWe recommend the following actions be takenopoppp classMsoNormal styletextindent225ptopnbspoppul stylemargintop0in typediscli classMsoNormal stylemsolistl0 level1 lfo1Consider disabling Java completely on all systems until a patch is availableopoplili classMsoNormal stylemsolistl0 level1 lfo1Set web browser security to disable the execution of script code or active contentopoplili classMsoNormal stylemsolistl0 level1 lfo1Run all software as a nonprivileged user one without administrative privilegees to diminish the effects of a successful attackopoplili classMsoNormal stylemsolistl0 level1 lfo1Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylemsolistl0 level1 lfo1Remind users not to open email attachments from unknown users or suspicious emails from trusted sourcesopopliulp classMsoNormal styletextindent45ptopnbspoppp classMsoNormal styletextindent225ptbopnbspopbpp classMsoNormalbopnbspopbpp classMsoNormalbuReferencesubbopopbpp classMsoNormalopnbspoppp classMsoNormalbSecurity Focusopopbpp classMsoNormalopnbspoppp classMsoNormal stylemarginleft5inba hrefhttpwwwsecurityfocuscombid59352span stylefontweightnormalhttpwwwsecurityfocuscombid59352spanabopoppp classMsoNormal stylemarginleft5inbnbspbopoppp classMsoNormalbFull Disclosurebopoppp classMsoNormalopnbspoppp classMsoNormal stylemarginleft5ina hrefhttpseclistsorgfulldisclosure2013Apr194httpseclistsorgfulldisclosure2013Apr194aopoppp classMsoNormal stylemarginleft5inbspan stylecolorblackopnbspopspanbpp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001nbsp Option 2opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Ouropoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as toopoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of theopoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect toopoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyquotCalibriquotquotsansserifquotopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=668 Thu, 25 Apr 2013 16:10:29 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1475609708msolisttypehybridmsolisttemplateids1495383312 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft10intextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid1736780061msolisttypehybridmsolisttemplateids91908708 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 492013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Vulnerabilities in Adobe Shockwave Player Could Allow For Code Executionnbspbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Adobe Shockwave which could allow for code execution Adobe Shockwave is a multimedia platform used to add animation and interactivity to web pages These vulnerabilities may be exploited if a user visits or is redirected to a specially crafted web page or when a user opens a specially crafted filenbsp Successful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAdobe Flash Player is prone to multiple vulnerabilities that could allow for code execution The vulnerabilities are as followsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo1A buffer overflow vulnerability that could lead to code execution opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1A memory corruption vulnerabilities that could lead to code executionopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1A memory leakage vulnerability that could be exploited to reduce the effectiveness of address space randomizationopopliulp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblack SYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe Shockwave Player 1200112 and earlier versions for Windows and Macintoshopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft25inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackInstall the updates provided by Adobe immediately after appropriate testingopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackUsers of Adobe Shockwave Player 1200112 and earlier versions for Windows and Macintosh should update to Adobe Shockwave Player 1202122opopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRun all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackDo not open email attachments from unknown or untrusted sourcesopopspanpp classMsoNormal styletextindent225ptbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackAdobeopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwadobecomsupportsecuritybulletinsapsb1312htmlhttpwwwadobecomsupportsecuritybulletinsapsb1312htmlaopopspanpp classMsoNormal stylemarginleft5inbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormalbspan stylecolorblackSecurity Focusopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58971httpwwwsecurityfocuscombid58971aopopspanpp classMsoNormalbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormalbspan stylecolorblackCVEopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131383httpwwwcvemitreorgcgibincvenamecginameCVE20131383aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131384httpwwwcvemitreorgcgibincvenamecginameCVE20131384aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131385httpwwwcvemitreorgcgibincvenamecginameCVE20131385aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131386httpwwwcvemitreorgcgibincvenamecginameCVE20131386aopopspanpp classMsoNormalbspan stylefontsize100ptfontfamilyquotArialquotquotsansserifquotcolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalopnbspoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=667 Thu, 11 Apr 2013 10:49:28 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid845284917msolisttypehybridmsolisttemplateids1798127546 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft3825pttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid1063530043msolisttypehybridmsolisttemplateids1804598110 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l2msolistid2080667722msolisttypehybridmsolisttemplateids543113032 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft10intextindent25infontfamilySymbollist l2level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l2level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l2level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l2level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l2level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l2level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l2level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l2level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 492013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Vulnerabilities in Adobe Flash Player and Adobe AIR Could Allow Remote Code Executionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple security updates have been released for Adobe Flash Player and Adobe AIR Adobe Flash Player and Adobe AIR are widely distributed multimedia and application players used to enhance the user experience when visiting web pages or reading email messages Adobe Flash Player is prone to seventeen vulnerabilities that could allow for remote code execution or information disclosureopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsnbsp Failed exploit attempts will likely cause denialofservice conditionsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAdobe Flash Player and AIR are prone to multiple vulnerabilities that could allow for remote code execution The update provided by Adobe resolves the followingopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo1An integer overflow vulnerability that could lead to code execution opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1A memory corruption vulnerabilities that could lead to code execution opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1A memory corruption vulnerability caused by Flash Player improperly initializing certain pointer arrays which could lead to code execution opopliulp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAttackers can exploit these issues to execute arbitrary code in the context of the affected application nbspFailed exploit attempts will likely result in denialofservice conditions opopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalbspan stylecolorblacknbspopopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl2 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe Flash Player 116602180 and earlier versions for Windows and Macintoshopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl2 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe Flash Player 112202275 and earlier versions for Linuxopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl2 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe Flash Player 11111548 and earlier versions for Android 4xopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl2 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe Flash Player 11111144 and earlier versions for Android 3x and 2xopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl2 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe AIR 3606090 and earlier versions for Windows Macintosh and Androidopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl2 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAdobe AIR 3606090 SDK amp Compiler and earlier versionsopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft25inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft3825pttextindent25inmsolistl0 level1 lfo3if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackUpdate Adobe Flash Player on vulnerable systems immediately after testingopopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl0 level1 lfo3if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackUsers of Adobe Flash Player 116602180 and earlier versions for Windows and Macintosh should update to Adobe Flash Player 117700169opopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl0 level1 lfo3if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackUsers of Adobe Flash Player 112202275 and earlier versions for Linux should update to Adobe Flash Player 112202280opopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl0 level1 lfo3if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRun all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl0 level1 lfo3if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl0 level1 lfo3if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackInform and educate users regarding the threats posed by attachments and hypertext links contained in emails especially from untrusted sourcesopopspanpp classMsoNormal styletextindent225ptbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackAdobespanbspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwadobecomsupportsecuritybulletinsapsb1311htmlhttpwwwadobecomsupportsecuritybulletinsapsb1311htmlaopopspanpp classMsoNormal stylemarginleft10inbspan stylecolorblacknbspopopspanbpp classMsoNormalbspan stylecolorblackSecurity Focusopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombidhttpwwwsecurityfocuscombid58947aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58949httpwwwsecurityfocuscombid58949aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58951httpwwwsecurityfocuscombid58951aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58952httpwwwsecurityfocuscombid58952aopopspanpp classMsoNormal stylemarginleft10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inbspan stylecolorblacknbspopopspanbpp classMsoNormalbspan stylecolorblackCVEopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131378httpwwwcvemitreorgcgibincvenamecginameCVE20131378aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131379httpwwwcvemitreorgcgibincvenamecginameCVE20131379aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131380httpwwwcvemitreorgcgibincvenamecginameCVE20131380aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20132555httpwwwcvemitreorgcgibincvenamecginameCVE20132555abopopbspanpp classMsoNormal stylemarginleft10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalopnbspoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=666 Thu, 11 Apr 2013 10:48:39 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetWindows1252meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid522481074msolisttypehybridmsolisttemplateids170009786 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft10intextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid553128082msolisttypehybridmsolisttemplateids383859312 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 492013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackVulnerability in MS Remote Desktop Client Could Allow Remote Code Executionopopspanpp classMsoNormal stylemarginleft15intextindent10855ptbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered in Microsoft Remote Desktop Client that could allow for remote code executionnbsp Remote desktop client is installed on Microsoft Windows operating systems by default and is used to remotely log in to systems hosting the remote desktop service opopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of these vulnerabilities could result in the attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered in Microsoft Remote Desktop Client that could allow for remote code executionnbsp This vulnerability is caused when the Microsoft Remote Desktop ActiveX Control mstscaxdll attempts to access an object in memory that has been freednbsp This leads to the corruption of memory in such a way as to allow an attacker to execute arbitrary code in the context of the current useropopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackIn order to exploit this vulnerability an attacker could host a specially crafted website that is designed to exploit this vulnerability The attacker would need to convince the victim to actively visit their website When the user visits the malicious website the attackers code runs on the victims system with the users credentialsopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of these vulnerabilities could result in the attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackWindows XPopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackWindows Server 2003opopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackWindows Vistaopopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackWindows Server 2008opopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackWindows 7opopspanpp classMsoNormal stylemarginleft10intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackWindows Server 2008 R2opopspanpp classMsoNormal stylemarginleft5inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft25inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Apply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2If there is no business case consider disabling or restricting access to the Microsoft Remote Desktop ActiveX Control mstscaxdllopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2In Internet Explorer consider setting the Internet and Local intranet security zone settings to quotHighquot to block ActiveX Controls and Active Scripting in these zonesopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Inform and educate users regarding the threats posed by hypertext links contained in emails or attachments especially from untrusted sourcesopopliulp classMsoNormal styletextindent225ptbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackMicrosoftopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpstechnetmicrosoftcomenussecuritybulletinms13029httpstechnetmicrosoftcomenussecuritybulletinms13029aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblackSecurityFocusopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58874httpwwwsecurityfocuscombid58874aopopspanpp classMsoNormal stylemarginleft10inbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormalbspan stylecolorblackCVEopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131296httpwwwcvemitreorgcgibincvenamecginameCVE20131296aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyquotCalibriquotquotsansserifquotopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=665 Thu, 11 Apr 2013 08:28:47 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1434784594msolisttypehybridmsolisttemplateids473283216 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid1589532853msolisttypehybridmsolisttemplateids826493826 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft3825pttextindent25infontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 492013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackCumulative Security Update for Internet Exploreropopspanpp classMsoNormal stylemarginleft15intextindent10855ptbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Microsofts web browser Internet Explorer which could allow an attacker to take complete control of an affected system Successful exploitation of these vulnerabilities could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackTwo remote code execution vulnerabilities have been discovered in Internet Explorer These vulnerabilities occur due to the way Internet Explorer accesses objects in memory that have not been properly deleted and could be exploited if a user visits a web page that is specifically crafted to take advantage of the vulnerabilitiesopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1bSYSTEM AFFECTEDbrbrbopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1span stylefontsize100ptfontfamilyquotArialquotquotsansserifquotInternet Explorer 10opopspanlili classMsoNormal stylecolorblackmsolistl0 level1 lfo1span stylefontsize100ptfontfamilyquotArialquotquotsansserifquotInternet Explorer 9opopspanlili classMsoNormal stylecolorblackmsolistl0 level1 lfo1span stylefontsize100ptfontfamilyquotArialquotquotsansserifquotInternet Explorer 8opopspanlili classMsoNormal stylecolorblackmsolistl0 level1 lfo1span stylefontsize100ptfontfamilyquotArialquotquotsansserifquotInternet Explorer 7opopspanlili classMsoNormal stylecolorblackmsolistl0 level1 lfo1span stylefontsize100ptfontfamilyquotArialquotquotsansserifquotInternet Explorer 6opopspanliulp classMsoNormal stylemarginleft5inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft25inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl1 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackApply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl1 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRun all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopopspanpp classMsoNormal stylemarginleft3825pttextindent25inmsolistl1 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft5intextindent1575ptmsolistl1 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackInform and educate users regarding the threats posed by hypertext links contained in emails or attachments especially from untrusted sourcesopopspanpp classMsoNormal styletextindent225ptbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackMicrosoftbrbropopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttptechnetmicrosoftcomenussecuritybulletinms13028httptechnetmicrosoftcomenussecuritybulletinms13028aopopspanpp classMsoNormal stylemarginleft10inbspan stylecolorblacknbspopopspanbpp classMsoNormalbspan stylecolorblackSecurity Focusopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58851httpwwwsecurityfocuscombid58851aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58850httpwwwsecurityfocuscombidaa hrefhttpwwwsecurityfocuscombid5885058850aopopspanpp classMsoNormal stylemarginleft10inbspan stylecolorblacknbspopopspanbpp classMsoNormalbspan stylecolorblackCVEopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131303httpwwwcvemitreorgcgibincvenamecginameCVE20131303aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20131304httpwwwcvemitreorgcgibincvenamecginameCVE20131304abopopbspanpp classMsoNormal stylemarginleft10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalopnbspoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=664 Thu, 11 Apr 2013 08:27:08 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetWindows1252meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCambriapanose12 4 5 3 5 4 6 3 2 4fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifpMsoListParagraph liMsoListParagraph divMsoListParagraphmsostylepriority34margintop0inmarginright0inmarginbottom100ptmarginleft5inlineheight115fontsize110ptfontfamilyCalibrisansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid986396965msolisttypehybridmsolisttemplateids263145470 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft75intextindent25inmsoansifontsize100ptfontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid1327708279msolisttypehybridmsolisttemplateids551284208 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft3825pttextindent25inmsoansifontsize100ptfontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l2msolistid1555307826msolisttypehybridmsolisttemplateids1963017042 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft3825pttextindent2025ptfontfamilySymbollist l2level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l2level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l2level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l2level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l2level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l2level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l2level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l2level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 432013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Vulnerabilities in Mozilla Products Could Allow Remote Code Executionopopspanpp classMsoNormal stylemarginleft15intextindent10855ptspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft15intextindent10855ptbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Mozilla Firefox Thunderbird and SeaMonkey applications which could allow for remote code execution Mozilla Firefox is a web browser used to access the Internet Mozilla Thunderbird is an email client Mozilla SeaMonkey is a cross platform Internet suite of tools ranging from a web browser to an email clientopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of these vulnerabilities could result in either an attacker gaining the same privileges as the logged on user or gaining session authentication credentials Depending on the privileges associated with the user an attacker could install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Mozilla Firefox Thunderbird and SeaMonkey The details of these vulnerabilities are as followsopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackMiscellaneous memory safety hazards spanbspan stylecolorblackMultiple memorycorruption vulnerabilities exist in the browser engine that could lead to arbitrary code executionopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackOutofbounds write in Cairo libraryspanbspan stylecolorblacknbspThis issue is caused when performing an outofbounds write in Cairo graphics library and could cause a potential exploitable crashopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackPrivilege escalation through Mozilla Maintenance Servicespanbspan stylecolorblacknbspA privilegeescalation vulnerability requiring local system access exists as a result of an error that occurs when using Mozilla Maintenance Serviceopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackWorld read and write access to app_tmp directory on Androidspanbspan stylecolorblacknbspThe apptmp directory for Firefox on Android is readable and writable giving third parties the ability to alter andor replace Firefox addons that are being stored temporarily in the app_tmpnbspdirectory before installationopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackPrivilege escalation through Mozilla Updaterspanbspan stylecolorblacknbspAn error exists where the Mozilla Updater can be made to load a malicious local DLL file resulting in privileged escalation procedure to occur In order for this vulnerability to be exploited the malicious DLL must be placed in a specific location locally on a host prior to Mozilla Updater being run Local file system access is necessary in order for this issue to be exploitableopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackWebGL crash with Mesa graphics driver on Linux spanbspan stylecolorblackA denialofservice condition exists resulting in a possible exploitable condition This issue occurs when the WebGL library crashes and primarily affects the Linux users using a Mesa graphics driveropopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackBypass of SOW protections allows cloning of protected nodes spanbspan stylecolorblackA securitybypass vulnerability affecting the System Only Wrappers SOW exists which if exploited could allow an attacker to clone a protected node and possibly result in a privilege escalation condition and nbspthe execution of arbitrary codeopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackBypass of tabmodal dialog origin disclosurenbsp spanbspan stylecolorblacknbspA method for removing the origin indication on tabmodal dialog boxes in combination with browser navigation exists This could allow for attackers to overlay a page to show another sites content and could possibly be used in phishing campaignsopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackCrosssite scripting XSS using timed history navigationsnbspspanbspan stylecolorblackA crosssite scripting vulnerability exists and can be exploited when an attacker uses timed history navigations to load an arbitrary website with that pages baseURI property pointing to another site instead of the seemingly loaded oneopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackMemory corruption while rendering grayscale PNG imagesnbspspanbspan stylecolorblackA memorycorruption vulnerability exist that affects specially crafted grayscale PNG images This issue occurs if the gfxcolor_managementenablev4nbsppreference is enabled innbspthenbspaboutconfignbsp by default this preference is not enabledopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifbspan stylecolorblackOutofbounds array read in CERT_DecodeCertPackagenbspspanbspan stylecolorblackAn outofbounds read issue exists affecting the CERT_DecodeCertPackage function of the Network Security Services NSS library and if exploited could result in a memory corruption and a nonexploitable crashopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of these vulnerabilities could result in either an attacker gaining the same privileges as the logged on user or gaining session authentication credentials Depending on the privileges associated with the user an attacker could install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpp classMsoListParagraph stylemsomargintopalt0inmarginright0inmarginbottom0inmarginleft75inmarginbottom0001pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontsize100ptlineheight115fontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylefontsize100ptlineheight115fontfamilyquotArialquotquotsansserifquotcolorblackFirefox versions prior to 200spanspan stylefontfamilyquotCambriaquotquotserifquotcolorblackopopspanpp classMsoListParagraph stylemsomargintopalt0inmarginright0inmarginbottom0inmarginleft75inmarginbottom0001pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontsize100ptlineheight115fontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylefontsize100ptlineheight115fontfamilyquotArialquotquotsansserifquotcolorblackFirefox Extended Support Release ESR versions prior to 1705spanspan stylefontfamilyquotCambriaquotquotserifquotcolorblackopopspanpp classMsoListParagraph stylemsomargintopalt0inmarginright0inmarginbottom0inmarginleft75inmarginbottom0001pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontsize100ptlineheight115fontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylefontsize100ptlineheight115fontfamilyquotArialquotquotsansserifquotcolorblackThunderbird versions prior to 1705spanspan stylefontfamilyquotCambriaquotquotserifquotcolorblackopopspanpp classMsoListParagraph stylemsomargintopalt0inmarginright0inmarginbottom0inmarginleft75inmarginbottom0001pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontsize100ptlineheight115fontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylefontsize100ptlineheight115fontfamilyquotArialquotquotsansserifquotcolorblackThunderbird Extended Support Release ESR versions prior to 1705spanspan stylefontfamilyquotCambriaquotquotserifquotcolorblackopopspanpp classMsoListParagraph stylemsomargintopalt0inmarginright0inmarginbottom0inmarginleft75inmarginbottom0001pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontsize100ptlineheight115fontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylefontsize100ptlineheight115fontfamilyquotArialquotquotsansserifquotcolorblackSeaMonkey versions prior to 217spanspan stylefontfamilyquotCambriaquotquotserifquotcolorblackopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft25inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft3825pttextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackUpgrade vulnerable Mozilla products immediately after appropriate testingopopspanpp classMsoNormal stylemarginleft3825pttextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft3825pttextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackDo not open email attachments or click on URLs from unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft3825pttextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRun all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopopspanpp classMsoNormal styletextindent225ptbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormal styletextindent225ptspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inbspan stylecolorblackMozillaopopspanbpp classMsoNormal stylemarginleft5inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannouncehttpwwwmozillaorgsecurityannounceaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201330htmlhttpwwwmozillaorgsecurityannounce2013mfsa201330htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201331htmlhttpwwwmozillaorgsecurityannounce2013mfsa201331htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201332htmlhttpwwwmozillaorgsecurityannounce2013mfsa201332htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201333htmlhttpwwwmozillaorgsecurityannounce2013mfsa201333htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201334htmlhttpwwwmozillaorgsecurityannounce2013mfsa201334htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201335htmlhttpwwwmozillaorgsecurityannounce2013mfsa201335htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201336htmlhttpwwwmozillaorgsecurityannounce2013mfsa201336htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201337htmlhttpwwwmozillaorgsecurityannounce2013mfsa201337htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201338htmlhttpwwwmozillaorgsecurityannounce2013mfsa201338htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201339htmlhttpwwwmozillaorgsecurityannounce2013mfsa201339htmlaopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwmozillaorgsecurityannounce2013mfsa201340htmlhttpwwwmozillaorgsecurityannounce2013mfsa201340htmlabopopbspanpp classMsoNormal stylemarginleft5inbspan stylecolorblacknbspopopspanbpp classMsoNormal stylemarginleft5inbspan stylecolorblackCVEopopspanbpp classMsoNormal stylemarginleft5inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130788httpwwwcvemitreorgcgibincvenamecginameCVE20130788aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130789httpwwwcvemitreorgcgibincvenamecginameCVE20130789aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130790httpwwwcvemitreorgcgibincvenamecginameCVE20130790aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130792httpwwwcvemitreorgcgibincvenamecginameCVE20130792aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130793httpwwwcvemitreorgcgibincvenamecginameCVE20130793aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130794httpwwwcvemitreorgcgibincvenamecginameCVE20130794aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130795httpwwwcvemitreorgcgibincvenamecginameCVE20130795aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130796httpwwwcvemitreorgcgibincvenamecginameCVE20130796aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130797httpwwwcvemitreorgcgibincvenamecginameCVE20130797aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130798httpwwwcvemitreorgcgibincvenamecginameCVE20130798aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130799httpwwwcvemitreorgcgibincvenamecginameCVE20130799aopopspanpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130800httpwwwcvemitreorgcgibincvenamecginameCVE20130800abopopbspanpp classMsoNormal stylemarginleft5inbspan stylecolorblacknbspopopspanbpp classMsoNormal stylemarginleft5inbspan stylecolorblackSecurityFocusopopspanbpp classMsoNormal stylemarginleft5inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58818httpwwwsecurityfocuscombid58818aopopspanpp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001nbsp Option 2opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyquotCalibriquotquotsansserifquotopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=663 Thu, 04 Apr 2013 09:55:05 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifspanapplestylespanmsostylenameapplestylespanMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid65762011msolisttypehybridmsolisttemplateids489532092 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid472337018msolisttypehybridmsolisttemplateids905514326 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l2msolistid1386368852msolisttypehybridmsolisttemplateids722887398 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft3825pttextindent2025ptfontfamilySymbollist l2level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l2level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l2level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l2level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l2level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l2level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l2level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l2level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 3272013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Security Vulnerabilities in Google Chrome Could Allow Remote Code Execution opopspanpp classMsoNormal stylemarginleft15intextindent10855ptbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities in Google Chrome could allow an attacker to execute arbitrary code in the context of the browser cause denialofservice conditions and bypass security restrictions othernbspattacks may also be possible Google Chrome is a web browser used to access the Internet Attackers can exploit these issues to execute arbitrary code in the context of the browser cause denialofservice conditions and bypass security restrictions other attacks may also be possiblenbspnbspnbspnbspnbspnbspnbspnbspopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of these vulnerabilities may result in either an attacker gaining the same privileges as the logged on user or gaining session authentication credentials Depending on the privileges associated with the user an attacker could install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Google Chrome Details of these vulnerabilities are as followsopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA useafterfree issue in Web Audio opopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackAn outofbounds read issue in the URL loader opopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA security issue in dev tools navigation during drag and drop opopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA useafterfree issue with popup windows in extensions opopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA useafterfree issue in extension bookmarks API opopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA security issue because it fails to ensure isolated web sites run in their own processes nbspnbspnbspnbspopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA security issue because it fails to avoid HTTP basic authentication brute force attacksopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA security issue due to memory safety errors in the USB Apps API CVE20130923nbspnbspnbspnbspopopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA security issue because it fails to properly check an extensions permissions API usage opopspanpp classMsoNormal stylemarginleft3825pttextindent2025ptmsolistl2 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackA security issue because it fails to properly restrict the URLs leakage to the extensions without the tabs permissionsnbspnbspopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA security issue because it fails to restrict active tags pasting in certain circumstances bopopbspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of some of the above vulnerabilities could result in an attacker gaining the same privileges as the user Depending on the privileges associated with the user an attacker could install programs view change delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo2Google Chrome Prior to 260141043opopliulp classMsoNormal stylemarginleft25inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo3Update vulnerable Google Chrome products immediately after appropriate testing by following the steps outlined by Google herenbspa hrefhttpsupportgooglecomchromebinanswerpyhlenampanswer95414httpsupportgooglecomchromebinanswerpyhlenampanswer95414aopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo3Run all software as a nonprivileged user with minimal access rightsopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo3Ensure that all nonadministrative tasks such as browsing the web and reading email are performed as an unprivileged user with minimal access rightsopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo3Deploy network intrusion detection systems to monitor network traffic for malicious activityopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo3Do not follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo3To prevent a successful exploit of scriptexecution vulnerabilities disable support for script code and active content within the client browser Note that this tactic might adversely affect websites that rely on HTML or script codeopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo3Various memoryprotection schemes such as nonexecutable and randomly mapped memory segments may hinder an attackers ability to exploit memory corruption vulnerabilitiesopopliulp classMsoNormal styletextindent225ptspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classapplestylespanbspan stylecolorblackGooglespanbspanspan classapplestylespanbopopbspanpp classMsoNormalopnbspoppp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwgooglecomchromehttpwwwgooglecomchromeaopopspanpp classMsoNormal stylemarginleft5inspan classapplestylespanspan stylecolorblacka hrefhttpgooglechromereleasesblogspotie201303stablechannelupdate_26htmlhttpgooglechromereleasesblogspotie201303stablechannelupdate_26htmlaspanspanspan stylecolorblackopopspanpp classMsoNormalspan stylecolor3E77D0nbspspanspan stylecolorblackopopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSecurity Focusopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58712httpwwwsecurityfocuscombid58712aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58723httpwwwsecurityfocuscombid58723aspanspan stylecolor3E77D0opopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58724httpwwwsecurityfocuscombid58724aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58725httpwwwsecurityfocuscombid58725aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58727httpwwwsecurityfocuscombid58727aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58729httpwwwsecurityfocuscombid58729aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58731httpwwwsecurityfocuscombid58731aopopspanpp classMsoNormalspan stylecolor3E77D0nbspspanspan stylecolorblackopopspanpp classMsoNormalbspan stylecolorblackCVEopopspanbpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130916httpwwwcvemitreorgcgibincvenamecginameCVE20130916aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130917httpwwwcvemitreorgcgibincvenamecginameCVE20130917aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130918httpwwwcvemitreorgcgibincvenamecginameCVE20130918aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130919httpwwwcvemitreorgcgibincvenamecginameCVE20130919aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130920httpwwwcvemitreorgcgibincvenamecginameCVE20130920aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130921httpwwwcvemitreorgcgibincvenamecginameCVE20130921aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130922httpwwwcvemitreorgcgibincvenamecginameCVE20130922aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130923httpwwwcvemitreorgcgibincvenamecginameCVE20130923aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130924httpwwwcvemitreorgcgibincvenamecginameCVE20130924aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130925httpwwwcvemitreorgcgibincvenamecginameCVE20130925aopopspanpp classMsoNormal stylemarginleft5inspan stylecolorblacka hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130926httpwwwcvemitreorgcgibincvenamecginameCVE20130926aopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalbnbspbPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001 Option 2opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyquotCalibriquotquotsansserifquotopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=662 Wed, 27 Mar 2013 13:39:07 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headMETA HTTPEQUIVContentType CONTENTtexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid65762011msolisttypehybridmsolisttemplateids489532092 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 3122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackVulnerability in Microsoft Silverlight Could Allow Remote Code Executionopopspanpp classMsoNormal stylemarginleft15intextindent10855ptbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered in the Microsoft Silverlight which could allow an attacker to take complete control of an affected system Microsoft Silverlight is a web application framework that provides support for NET applications and used for streaming media The vulnerabilities can be exploited if a user visits or is redirected to a malicious web page or runs a specially crafted Silverlight applicationopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered in Microsoft Silverlight which could allow an attacker to take complete control of an affected system The vulnerability is caused by Silverlight incorrectly checking a memory pointer when rendering an HTML object The vulnerability can be exploited by opening a specially crafted Silverlight web applicationopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Microsoft Silverlight 5opopliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Apply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Consider uninstalling Silverlight if there is no business needopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1BlocknbspSilverlightnbspcontent at the organizations perimeteropoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Apply the principle of Least Privilege to all servicesopopliulp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalbMicrosoftbrbropopbpp classMsoNormal stylemarginleft5ina hrefhttpsmailmsisacorgowarediraspxCx0rPoxOah0K3SNbfwIHk8pLPYAHa8s8I7FoCLlP_SMx4fpQncWfjY6oPfN6BRhkVGlsl52AxAycampURLhttp3a2f2ftechnetmicrosoftcom2fenus2fsecurity2fbulletin2fms13022 target_blankhttptechnetmicrosoftcomenussecuritybulletinms13022aopoppp classMsoNormalba hrefhttpsmailmsisacorgowarediraspxCx0rPoxOah0K3SNbfwIHk8pLPYAHa8s8I7FoCLlP_SMx4fpQncWfjY6oPfN6BRhkVGlsl52AxAycampURLhttp3a2f2ftechnetmicrosoftcom2fenus2fsecurity2fbulletin2fms13022 target_blankspan stylecolorbluebrspanaopopbpp classMsoNormalbCVEopopbpp classMsoNormalbopnbspopbpp classMsoNormal stylemarginleft5ina hrefhttpsmailmsisacorgowarediraspxCx0rPoxOah0K3SNbfwIHk8pLPYAHa8s8I7FoCLlP_SMx4fpQncWfjY6oPfN6BRhkVGlsl52AxAycampURLhttp3a2f2fwwwcvemitreorg2fcgibin2fcvenamecgi3fname3dCVE20130074 target_blankhttpwwwcvemitreorgcgibincvenamecginameCVE20130074aopoppp classMsoNormal stylemarginleft5innbspopoppp classMsoNormalbSecurity Focusbrbropopbpp classMsoNormal stylemarginleft5ina hrefhttpsmailmsisacorgowarediraspxCx0rPoxOah0K3SNbfwIHk8pLPYAHa8s8I7FoCLlP_SMx4fpQncWfjY6oPfN6BRhkVGlsl52AxAycampURLhttp3a2f2fwwwsecurityfocuscom2fbid2f58327 target_blankhttpwwwsecurityfocuscombid58327aopoppp classMsoNormalbnbspopopbpp classMsoNormalbnbspopopbpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001 Option 2opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyCalibrisansserifopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=661 Wed, 13 Mar 2013 14:48:48 EDT html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid550187732msolisttypehybridmsolisttemplateids1676996048 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid1619675648msolisttypehybridmsolisttemplateids1874123066 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l2msolistid1696465049msolisttypehybridmsolisttemplateids1174077360 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l2level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l2level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l2level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l2level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l2level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l2level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l2level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l2level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l3msolistid1864636041msolisttypehybridmsolisttemplateids1998242000 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l3level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionlefttextindent25infontfamilySymbollist l3level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l3level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l3level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l3level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l3level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l3level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l3level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l3level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpbopopbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2272013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Vulnerabilities in Adobe Flash Player Could Allow Remote Code opopspanpp classMsoNormal stylemarginleft15inspan stylecolorblackExecutionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Adobe Flash Playernbspthat could allow an attacker to take control of the affected system Adobe Flash Player is a widely distributed multimedia and application player used to enhance the user experience when visiting web pages or reading email messagesopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblackIt should be noted that these vulnerabilities are currently being exploited via various phishing campaignsspanbspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackAdobe Flash Playernbspis prone to multiple vulnerabilities that could allow for remote code executionnbsp The update provided by Adobe resolves the followingopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo1A permissions issue with the Flash Player Firefox sandbox opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1A vulnerability in the External Interface Action Script feature which can be exploited to execute malicious code opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1A buffer overflow vulnerability in a Flash Player broker service which can be used to execute malicious code opopliulp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsnbspopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblackAccording to Adobe the first two vulnerabilities listed above are being exploited in the wild in attacks delivered via malicious Flash SWF content hosted on websites that target Flash Player in Firefoxspanbspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl2 level1 lfo2Adobe Flash Player 116602168 and earlier versions for Windowsopopliulul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo3Adobe Flash Player 116602167 and earlier versions for Macintoshopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Adobe Flash Player 112202270 and earlier versions for Linuxopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Adobe Flash Player 10318361 and earlier versions for Linuxopopliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl3 level1 lfo4Install the updates provided by Adobe immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl3 level1 lfo4Users of Adobe Flash Player 116602168 and earlier versions for Windows should update to Adobe Flash Player 116602171opoplili classMsoNormal stylecolorblackmsolistl3 level1 lfo4Users of Adobe Flash Player 116602167 and earlier versions for Macintosh should update to Adobe Flash Player 116602171opoplili classMsoNormal stylecolorblackmsolistl3 level1 lfo4Users of Adobe Flash Player 112202270 and earlier versions for Linux should update to Adobe Flash Player 112202273opoplili classMsoNormal stylecolorblackmsolistl3 level1 lfo4Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl3 level1 lfo4Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl3 level1 lfo4Do not open email attachments from unknown or untrusted sourcesopopliulp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalbAdobeopopbpp classMsoNormalbopnbspopbpp classMsoNormal stylemarginleft5ina hrefhttpswwwadobecomsupportsecuritybulletinsapsb1308htmlhttpswwwadobecomsupportsecuritybulletinsapsb1308htmlaopoppp classMsoNormalbnbspopopbpp classMsoNormalbopnbspopbpp classMsoNormalbCVEopopbpp classMsoNormalbopnbspopbpp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130648httpwwwcvemitreorgcgibincvenamecginameCVE20130648aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130643httpwwwcvemitreorgcgibincvenamecginameCVE20130643abopopbpp classMsoNormalbnbspopopbpp classMsoNormalbSecurity Focusbrbropopbpp classMsoNormal stylemarginleft5ina hrefhttpwwwsecurityfocuscombid58186httpwwwsecurityfocuscombid58186aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwsecurityfocuscombid58185httpwwwsecurityfocuscombid58185abopopbpp classMsoNormalbnbspopopbpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyCalibrisansserifopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=660 Wed, 06 Mar 2013 08:36:55 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid71508392msolisttypehybridmsolisttemplateids768683750 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft5625pttextindent25infontfamilySymbollist l0level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l0level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l0level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l0level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l0level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l0level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l0level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l0level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inlist l1msolistid1302348676msolisttypehybridmsolisttemplateids944220130 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstopnonemsolevelnumberpositionleftmarginleft4425pttextindent2625ptfontfamilySymbollist l1level2msoleveltabstop10inmsolevelnumberpositionlefttextindent25inlist l1level3msoleveltabstop15inmsolevelnumberpositionlefttextindent25inlist l1level4msoleveltabstop20inmsolevelnumberpositionlefttextindent25inlist l1level5msoleveltabstop25inmsolevelnumberpositionlefttextindent25inlist l1level6msoleveltabstop30inmsolevelnumberpositionlefttextindent25inlist l1level7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inlist l1level8msoleveltabstop40inmsolevelnumberpositionlefttextindent25inlist l1level9msoleveltabstop45inmsolevelnumberpositionlefttextindent25inolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 id_x0000_i1025 srcimagesSCISACbmpspanopopptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN opopbpp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2202013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp opoppp classMsoNormal stylemarginleft10intextindent10inbSUBJECTbnbsp nbspnbsp span stylecolorblackOracle Java Runtime Environment JRE is prone to Multiple Security Vulnerabilitiesspanspan stylefontfamilyquotArialquotquotsansserifquotcolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Oracle Java Runtime Environment JRE that can lead to remote code execution The Java Runtime Environment is used to enhance the user experience when visiting websites and is installed on most desktops and servers This vulnerability may be exploited if a user visits or is redirected to a specifically crafted web page Successful exploitation of these vulnerabilities could result in an attacker gaining the same privileges as the JRE application Depending on the privileges associated with the application an attacker could execute arbitrary code in the context of the application bypass security restrictions or cause denialofservice conditions other attacks may also be possibleopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONopopspanbpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Oracle Java Runtime Environment that can lead to remote code execution In order to exploit these vulnerabilities an attacker must first create a web page with a specially crafted applet designed to leverage this issue When the web page is visited the attacker supplied code is run in the context of the affected applicationopopspanpp classMsoNormalspan stylecolorblacknbspopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of these vulnerabilities could result in an attacker gaining the same privileges as the JRE application Depending on the privileges associated with the application an attacker could execute arbitrary code in the context of the application bypass security restrictions or cause denialofservice conditions other attacks may also be possibleopopspanpp classMsoNormalbspan stylecolorblacknbspspanbspan stylecolorblackopopspanpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft4425pttextindent2625ptmsolistl1 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackOracle Java SE JDK and JRE 7 Update 13 and earlieropopspanpp classMsoNormal stylemarginleft4425pttextindent2625ptmsolistl1 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackOracle Java SE JDK and JRE 6 Update 39 and earlieropopspanpp classMsoNormal stylemarginleft4425pttextindent2625ptmsolistl1 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackOracle Java SE JDK and JRE 50 Update 39 and earlieropopspanpp classMsoNormal stylemarginleft4425pttextindent2625ptmsolistl1 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackOracle Java SE SDK and JRE 142_41 and earlieropopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormal stylemarginleft5625pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackApply the patch from Oracle after appropriate testing as soon as possibleopopspanpp classMsoNormal stylemarginleft5625pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackConsider disabling Java completely on all systems until a patch is availableopopspanpp classMsoNormal stylemarginleft5625pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRun all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopopspanpp classMsoNormal stylemarginleft5625pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft5625pttextindent25inmsolistl0 level1 lfo2if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to open email attachments from unknown users or suspicious emails from trusted sourcesopopspanpp classMsoNormal stylemarginleft5intextindent1575ptspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormalbspan stylecolorblackSecurity Focusopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58031httpwwwsecurityfocuscombid58031aopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58031httpwwwsecurityfocuscombid58029aopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58027httpwwwsecurityfocuscombid58027aopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid58028httpwwwsecurityfocuscombid58028aopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblacka hrefhttpwwwsecurityfocuscombid57778httpwwwsecurityfocuscombid57778abopopbspanpp classMsoNormal stylemarginleft15intextindent10inbspan stylecolorblacknbspopopspanbpp classMsoNormalbspan stylecolorblackOracleopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft15intextindent10inuspan stylecolorblacka hrefhttpwwworaclecomtechnetworktopicssecurityjavacpufeb2013update1905892htmlhttpwwworaclecomtechnetworktopicssecurityjavacpufeb2013update1905892htmlaspanuspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblacknbspopopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availableopoppp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001 option 2opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available fromopoppp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=657 Fri, 22 Feb 2013 14:28:33 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyWingdingspanose15 0 0 0 0 0 0 0 0 0fontfacefontfamilyWingdingspanose15 0 0 0 0 0 0 0 0 0fontfacefontfamilyCalibripanose12 15 5 2 2 2 4 3 2 4fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4 Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid705520212msolisttemplateids367041286list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilySymbollist l0level2msolevelnumberformatbulletmsoleveltextomsoleveltabstop10inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyCourier NewmsobidifontfamilyTimes New Romanlist l0level3msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop15inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l0level4msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop20inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l0level5msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop25inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l0level6msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop30inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l0level7msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l0level8msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop40inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l0level9msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop45inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1msolistid1642348188msolisttemplateids1474330806list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoansifontsize100ptfontfamilySymbollist l1level2msolevelnumberformatbulletmsoleveltextomsoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoansifontsize100ptfontfamilyCourier NewmsobidifontfamilyTimes New Romanlist l1level3msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1level4msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1level5msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop275inmsolevelnumberpositionleftmarginleft275intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1level6msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop325inmsolevelnumberpositionleftmarginleft325intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1level7msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop375inmsolevelnumberpositionleftmarginleft375intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1level8msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop425inmsolevelnumberpositionleftmarginleft425intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l1level9msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop475inmsolevelnumberpositionleftmarginleft475intextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2msolistid2107919822msolisttemplateids1394489340list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilySymbollist l2level2msolevelnumberformatbulletmsoleveltextomsoleveltabstop10inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyCourier NewmsobidifontfamilyTimes New Romanlist l2level3msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop15inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2level4msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop20inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2level5msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop25inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2level6msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop30inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2level7msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop35inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2level8msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop40inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingslist l2level9msolevelnumberformatbulletmsoleveltextF0A7msoleveltabstop45inmsolevelnumberpositionlefttextindent25inmsoansifontsize100ptfontfamilyWingdingsolmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2222013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Google Chrome Vulnerabilities Could Allow for Remote Code Executionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Google Chrome that could allow remote code execution the bypass of security restrictions or cause denialofservice conditions Google Chrome is a web browser used to access the Internet Details are not currently available that depict accurate attack scenarios but it is believed that some of the vulnerabilities can likely be exploited if a user visits or is redirected to a specially crafted web pagebrbrSuccessful exploitation of these vulnerabilities may result in either an attacker gaining the same privileges as the logged on user or gaining session authentication credentials Depending on the privileges associated with the user an attacker could install programs view change or delete data or create new accounts with full user rights opopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Google Chrome Details of these vulnerabilities are as followsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1A memorycorruption with web audio nodes opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A useafterfree error exists in database handlingnbspnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue that occurs due to a bad read in Matroska handlingnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue due to bad memory access with excessive SVG parametersnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue due to a bad read in Skia opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue due to an inappropriate load of NaClnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue because too many API permissions are granted to the web storenbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue exists due to incorrect NaCl signal handlingnbspnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue occurs because the developer tools process has too many permissions and places too much trustnbsp in the connected servernbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1An outofbounds read issue in Skianbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue that occurs due to a tighten user gesture check for dangerous file downloads opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Multiple memorycorruption issues exist across the IPC layernbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1An integeroverflow vulnerability occurs when handling blobnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Multiple security weakness exist across the IPC layer opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A racecondition vulnerability occurs when handling media opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A bufferoverflow vulnerability exists in vorbis decodingnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A security issue exist due to incorrect path handling while copying a filenbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Multiple security issues occurs due to memory management when handling a plugin message opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1An offbyone read issue exists in PDFnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A useafterfree issue occurs when handling a URL opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1An integeroverflow vulnerability occurs when handling Opusnbsp opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A racecondition vulnerability exists in ICU brbrSuccessful exploitation of some of the above vulnerabilities could result in an attacker gaining the same privileges as the user Depending on the privileges associated with the user an attacker could install programs view change delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsopopliulp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl2 level1 lfo2Google Chrome for Windows and Linux versions prior to 250136497opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo2Google Chrome for Mac versions prior to 250136499opopliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft75intextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackUpdate vulnerable Google Chrome products immediately after appropriate testing by following the steps outlined by Google here bra hrefhttpsupportgooglecomchromebinanswerpyhlenampanswer95414httpsupportgooglecomchromebinanswerpyhlenampanswer95414aopopspanpp classMsoNormal stylemarginleft75intextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRun all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopopspanpp classMsoNormal stylemarginleft75intextindent25inmsolistl1 level1 lfo3if supportListsspan stylefontsize100ptfontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackRemind users not to visit untrusted websites follow links or open files provided by unknown or untrusted sourcesopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalbSecurity Focusopopbpp classMsoNormal stylemarginleft5inbra hrefhttpwwwsecurityfocuscombid58101httpwwwsecurityfocuscombid58101abrbropoppp classMsoNormalbCVEopopbpp classMsoNormal stylemarginleft5inbbrba hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130879httpwwwcvemitreorgcgibincvenamecginameCVE20130879aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130880httpwwwcvemitreorgcgibincvenamecginameCVE20130880aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130881httpwwwcvemitreorgcgibincvenamecginameCVE20130881aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130882httpwwwcvemitreorgcgibincvenamecginameCVE20130882aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130883httpwwwcvemitreorgcgibincvenamecginameCVE20130883aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130884httpwwwcvemitreorgcgibincvenamecginameCVE20130884aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130885httpwwwcvemitreorgcgibincvenamecginameCVE20130885aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130886httpwwwcvemitreorgcgibincvenamecginameCVE20130886aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130887httpwwwcvemitreorgcgibincvenamecginameCVE20130887aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130888httpwwwcvemitreorgcgibincvenamecginameCVE20130888aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130889httpwwwcvemitreorgcgibincvenamecginameCVE20130889aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130890httpwwwcvemitreorgcgibincvenamecginameCVE20130890aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130891httpwwwcvemitreorgcgibincvenamecginameCVE20130891aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130892httpwwwcvemitreorgcgibincvenamecginameCVE20130892aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130893httpwwwcvemitreorgcgibincvenamecginameCVE20130893aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130894httpwwwcvemitreorgcgibincvenamecginameCVE20130894aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130895httpwwwcvemitreorgcgibincvenamecginameCVE20130895aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130896httpwwwcvemitreorgcgibincvenamecginameCVE20130896aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130897httpwwwcvemitreorgcgibincvenamecginameCVE20130897aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130898httpwwwcvemitreorgcgibincvenamecginameCVE20130898aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130899httpwwwcvemitreorgcgibincvenamecginameCVE20130899aopoppp classMsoNormal stylemarginleft5ina hrefhttpwwwcvemitreorgcgibincvenamecginameCVE20130900httpwwwcvemitreorgcgibincvenamecginameCVE20130900aopoppp classMsoNormal stylemarginleft5inopnbspoppp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001 Option 2opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppp classMsoNormalspan stylefontsize110ptfontfamilyquotCalibriquotquotsansserifquotopnbspopspanpdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=656 Fri, 22 Feb 2013 14:26:52 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackAdobe Shockwave Player Remote Code Execution Vulnerabilitybopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered in Adobe Shockwave Player which could allow for remote code execution Adobe Shockwave Player is a multimedia platform used to add animation and interactivity to web pages Successful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAdobe Shockwave Player is prone to a remote codeexecution vulnerability because of a memory corruption vulnerability and a stack overflow vulnerability Attackers can exploit this issue to execute arbitrary code in the context of the affected application Failed exploit attempts will likely result in denialofservice conditions Successful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Adobe Shockwave Player 1168638 and earlier versions for Windows and Macintoshbopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Update Adobe Shockwave Player on vulnerable systems immediately after testingopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Inform and educate users regarding the threats posed by attachments and hypertext links contained in emails especially from untrusted sourcesopopliulp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbAdobebopopspanpp classMsoNormalspan classMsoHyperlinkhttpswwwadobecomsupportsecuritybulletinsapsb1306htmlspanopoppp classMsoNormalopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130635opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130636spanopoppp classMsoNormaluspan stylecolorblueopspan styletextdecorationnonenbspspanopspanupp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=655 Wed, 13 Feb 2013 14:34:27 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2msolistid3msolisttemplateids3list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Vulnerabilities in Adobe Flash Player Could Allow For Remote Code Executionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Adobe Flash Player and AIR that could allow an attacker to take control of the affected system Adobe Flash Player is a widely distributed multimedia and application player used to enhance the user experience when visiting web pages or reading email messages opopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAdobe Flash Player is prone to seventeen vulnerabilities that could allow for remote code execution or information disclosure The vulnerabilities are as followsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Multiple buffer overflow vulnerabilities that could lead to code execution CVE20131372 CVE20130645 CVE20131373 CVE20131369 CVE20131370 CVE20131366 CVE20131365 CVE20131368 CVE20130642 CVE20131367opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Multiple useafterfree vulnerabilities that could lead to code execution CVE20130649 CVE20131374 CVE20130644opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1An integer overflow vulnerability that could lead to code execution CVE20130639opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Multiple memory corruption vulnerabilities that could lead to code execution CVE20130638 CVE20130647opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1A vulnerability that could result in information disclosure CVE20130637opopliulp classMsoNormalspan stylecolorblack opopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEMS AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2AdobeFlash Player 115502149 and earlier versions for Windows and Macintoshopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Adobe Flash Player 112202262 and earlier versions for Linuxopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Adobe Flash Player 11111537 and earlier versions for Android 4xopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Adobe Flash Player 11111132 and earlier versions for Android 3x and 2xopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Adobe AIR 3501060 and earlier versionsopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Adobe AIR 3501060 SDK and earlier versions bopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl2 level1 lfo3Install the updates provided by Adobe immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of Adobe Flash Player 115502149 and earlier versions for Windows should update to Adobe Flash Player 116602168opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of Adobe Flash Player 115502149 and earlier versions for Macintosh should update to Adobe Flash Player 116602167opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of Adobe Flash Player 112202262 and earlier versions for Linux should update to Adobe Flash Player 112202270opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Flash Player installed with Google Chrome will automatically be updated to the latest Google Chrome version which will include Adobe Flash Player 116602167 for Windows Macintosh and Linuxopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Flash Player installed with Internet Explorer 10 for Windows 8 will automatically be updated to the latest Internet Explorer 10 version which will include Adobe Flash Player 116602167 for Windowsopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of Adobe Flash Player 11111537 and earlier versions on Android 4x devices should update to Adobe Flash Player 11111547opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of Adobe Flash Player 11111132 and earlier versions for Android 3x and earlier versions should update to Flash Player 11111143opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of Adobe AIR 3501060 and earlier versions should update to Adobe AIR 360597opoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Users of the Adobe AIR 3501060 SDK including AIR for iOS and earlier should update to the new Adobe AIR 360599 SDK Compileropoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Do not open email attachments from unknown or untrusted sourcesopopliulp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbAdobebopopspanpp classMsoNormalspan classMsoHyperlinkhttpswwwadobecomsupportsecuritybulletinsapsb1305htmlspanopoppp classMsoNormalopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131372opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130645opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131733opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131369opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131366opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130649opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131374opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131368opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130642opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130644opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130647opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131367opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130638opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130637spanopoppp classMsoNormaluspan stylecolorblueopspan styletextdecorationnonenbspspanopspanupp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=654 Wed, 13 Feb 2013 14:33:37 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2msolistid3msolisttemplateids3list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackMultiple Vulnerabilities in Adobe Flash Player Could Allow For Remote Code Executionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Adobe Flash Player and AIR that could allow an attacker to take control of the affected system Adobe Flash Player is a widely distributed multimedia and application player used to enhance the user experience when visiting web pages or reading email messages opopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackIt should be noted that these vulnerabilities are currently being exploited via various phishing campaignsspanbspan stylecolorblacknbsp opopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAdobe Flash Player band AIRb are prone to multiple vulnerabilities that could allow for remote code execution Adobe has released security updates for Adobe Flash Player 115502146 and earlier versions for Windows and Macintosh Adobe Flash Player 112202261 and earlier versions for Linux Adobe Flash Player 11111536 and earlier versions for Android 4x and Adobe Flash Player 11111131 and earlier versions for Android 3x and 2x Successful exploitation could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rights Failed exploit attempts will likely cause denialofservice conditionsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackCVE20130633 This vulnerability is being exploited in the wild in targeted attacks designed to trick the users into opening a Microsoft Word document delivered as an email attachment which contains malicious Flash SWF content The exploit targets the ActiveX version of Flash Player on Windowsopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackCVE20130634 This vulnerability is being exploited in the wild in attacks delivered via malicious Flash SWF content hosted on websites that target Flash Player in Firefox or Safari on the Macintosh platform as well as attacks designed to trick Windows users into opening a Microsoft Word document delivered as an email attachment which contains malicious Flash SWF contentopopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEMS AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo1Adobe Flash Player 115502146 and earlier versions for Windows and Macintoshopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1Adobe Flash Player 112202261 and earlier versions for Linuxopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1Adobe Flash Player 11111536 and earlier versions for Android 4xopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo1Adobe Flash Player 11111131 and earlier versions for Android 3x and 2xbopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackUPDATED SYSTEMS AFFECTED opopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl2 level1 lfo2Adobe AIR 3501060 and earlier versionsopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo2Adobe AIR 3501060 SDK and earlier versionsbopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo3Install the updates provided by Adobe immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Users of Adobe Flash Player 115502146 and earlier versions for Windows and Macintosh should update to Adobe Flash Player 115502149opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Users of Adobe Flash Player 112202261 and earlier versions for Linux should update to Adobe Flash Player 112202262opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Users of Adobe Flash Player 11111536 and earlier versions on Android 4x devices should update to Adobe Flash Player 11111537opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Users of Adobe Flash Player 11111131 and earlier versions for Android 3x and earlier versions should update to Flash Player 11111132opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo3Do not open email attachments from unknown or untrusted sourcesopopliulp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbAdobebopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwadobecomsupportsecuritybulletinsapsb1304htmlspanopoppp classMsoNormalopnbspoppp classMsoNormalspan classMsoHyperlinkbSecurityFocusbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwsecurityfocuscombid57787opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwsecurityfocuscombid57788spanopoppp classMsoNormalopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130633 httpwwwcvemitreorgcgibincvenamecginameCVE20130634spanopoppp classMsoNormaluspan stylecolorblueopspan styletextdecorationnonenbspspanopspanupp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=653 Wed, 13 Feb 2013 14:31:48 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft15intextindent10855ptbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackVulnerability in Vector Markup Language VML Could Allow Remote Code Execution bopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered within Microsofts web browser Internet Explorer that could allow for remote code execution Specifically the vulnerability is caused by the way the Vector Markup Language VML is processed by Internet Explorer VML is an XMLbased language used to produce and render vector graphics Successful exploitation could result in an attacker gaining the same privileges of the loggedon user Depending on the privileges associated with the affected user an attacker could then install programs view change or delete data or create accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered within Microsofts Internet Explorer web browser that could allow for remote code execution within the context of the currently logged in user potentially allowing for full control of a given system This vulnerability is triggered when specially crafted data attempts to access VML allocated buffersuopopuspanpp classMsoNormaluspan stylecolorblackopspan styletextdecorationnonenbspspanopspanupp classMsoNormalspan stylecolorblackVector Markup Language is an XMLbased language used to produce and render vector graphics akin to canvasbased graphic suites Even though VML use has decreased with the advent of SVG it is still supported within Internet Exploreropopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackExploitation of this vulnerability is possible if a user visits or is directed to a website delivering a specially crafted webpage Additionally an attacker could send a user a specially crafted Microsoft Office document that hosts the IErendering engineopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could result in an attacker gaining the save privileges of the loggedon user Depending on the privileges associated with the affected user an attacker could then install programs view change or delete data or create accounts with full user rightsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEMS AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Internet Explorer 6opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Internet Explorer 7opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Internet Explorer 8opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Internet Explorer 9opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Internet Explorer 10bopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblack We recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Apply appropriate patches provided by Microsoft immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Run all software as a nonprivileged user to diminish the effects of the attackopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Set Internet and Local intranet security zone settings to quotHighquot to block ActiveX Controls and Active Scripting in these zonesopopliulp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbMicrosoftbopopspanpp classMsoNormalspan classMsoHyperlinkhttptechnetmicrosoftcomenussecuritybulletinms13010spanopoppp classMsoNormal stylemarginleft15intextindent10inopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130030nbsp spanopoppp classMsoNormaluspan stylecolorblueopspan styletextdecorationnonenbspspanopspanupp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=652 Wed, 13 Feb 2013 14:31:01 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetiso88591meta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttypesimplemsolisttemplateids1msolistnameWW8Num1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop0inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilySymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft10intextindent10inbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackVulnerability in OLE Automation Could Allow Remote Code Executionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackA vulnerability has been discovered in Microsoft Windows Object Linking and Embedding OLE Automation which could allow an attacker to take complete control of an affected system Microsoft Object Linking and Embedding OLE Automation is an interprocess communication mechanism used by languages that run on Windows It provides an infrastructure for automation controllers to access and manipulate ie set properties of or call methods on shared automation objects that are exported by other applicationsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackThe vulnerability could allow remote code execution if a user opens a specially crafted file Successful exploitation of this vulnerability could allow the attacker to could gain the same user rights as the current user An attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblack A vulnerability has been discovered in Microsoft Windows Object Linking and Embedding OLE Automation This remote code execution vulnerability exists in the way that Object Linking and Embedding OLE Automation parses specially crafted data The vulnerability could allow remote code execution if a user opens a specially crafted file Successful exploitation of this vulnerability could allow the attacker to could gain the same user rights as the current user An attacker could then install programs view change or delete data or create new accounts with full user rightsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft5intextindent25inmsolistl0 level1 lfo1if supportListsspan stylefontfamilySymbolcolorblackspan stylemsolistIgnorespan stylefont70pt quotTimes New Romanquotnbspnbspnbspnbspnbspnbspnbspnbsp spanspanspanendifspan stylecolorblackMicrosoft Windows XP Service Pack 3bopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Apply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Remind users not to visit untrusted websites follow links or open files provided by unknown or untrusted sourcesopopliulp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbMicrosoftbopopspanpp classMsoNormalspan classMsoHyperlinkhttptechnetmicrosoftcomenussecuritybulletinms13020spanopoppp classMsoNormal stylemarginleft15intextindent10inopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20131313spanopoppp classMsoNormaluspan stylecolorblueopspan styletextdecorationnonenbspspanopspanupp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 431 8038960001opoppp classMsoNormalFax 431 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=651 Wed, 13 Feb 2013 14:29:42 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft10intextindent10inbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackVulnerability in NET Framework Could Allow Elevation of Privilegebopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblack A vulnerability has been discovered in the Microsoft NET Framework which could allow an attacker to take complete control of an affected system MicrosoftNET is a software framework for applications designed to run under Microsoft Windows This vulnerability can be exploited if a user visits or is redirected to a malicious web page or runs a specially crafted MicrosoftNET applicationopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation of this vulnerability could allow an attacker to obtain complete control of the affected system An attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblack An elevation of privilege vulnerability exists in the way that the NET Framework elevates the permissions of a callback function when a particular Windows Forms object is created Exploitation could occur if a user visits a specially crafted website that hosts malicious XBAP Extensible Application Markup Language Browser Application content using a web browser capable of instantiating XBAPs Additionally an attacker can exploit this issue by creating a specially crafted Windows NET application to bypass Code AccessSecurity CAS restrictionsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackAn attacker who successfully exploited this vulnerability could take complete control of an affected system An attacker could then install programs view change or delete data or create new accounts with full user rightsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Microsoft NET Framework 20opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Microsoft NET Framework 35 except SP1opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Microsoft NET Framework 351opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Microsoft NET Framework 4opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Microsoft NET Framework 45 except on Windows RTbopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Apply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Inform and educate users regarding the threats posed by hypertext links contained in emails or attachments especially from untrusted sources Macintoshopopliulp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbMicrosoftbopopspanpp classMsoNormalspan classMsoHyperlinkhttptechnetmicrosoftcomenussecuritybulletinms13015spanopoppp classMsoNormal stylemarginleft15intextindent10inopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130073spanspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalbspan stylecolorblackSecurityFocusspanbuspan stylecolorblueopopspanupp classMsoNormaluspan stylecolorbluehttpwwwsecurityfocuscombid57847spanuspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=650 Wed, 13 Feb 2013 14:29:13 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopnbspoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopnbspoppp classMsoNormalbDATE ISSUEDb nbspnbspnbspnbspnbspnbsp 2122013 opoppp classMsoNormalnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp bopopbpp classMsoNormal stylemarginleft10intextindent10inbSUBJECTbnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbspnbsp span stylecolorblackCumulative Security Update for Internet Explorerbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackMultiple vulnerabilities have been discovered in Microsofts web browser Internet Explorer which could allow an attacker to take complete control of an affected system Successful exploitation of these vulnerabilities could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackTwelve remote code execution vulnerabilities and one information disclosure vulnerability have been discovered in Internet Explorer The vulnerabilities that allow remote code execution occur due to the way Internet Explorer accesses objects in memory that have not been properly initialized or deleted The information disclosure vulnerability occurs due to the way Internet Explorer handles certain types of encoding These vulnerabilities can be exploited if a user visits a web page that is specifically crafted to take advantage of the vulnerabilities Successful exploitation of these vulnerabilities could result in an attacker gaining the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsbopopbspanpp classMsoNormalbspan stylecolorblackopnbspopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows XP Service Pack 3opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows XP Professional x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Server 2003 Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Server 2003 x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Server 2003 with SP2 for Itaniumbased Systemsopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Vista Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Vista x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Server 2008 for 32bit Systems Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Server 2008 for x64based Systems Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Windows Server 2008 for Itaniumbased Systems Service Pack 2bopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopnbspopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblacknbspbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Apply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Inform and educate users regarding the threats posed by hypertext links contained in emails or attachments especially from untrusted sources Macintoshopopliulp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopnbspopspanpp classMsoNormalspan classMsoHyperlinkbMicrosoftbopopspanpp classMsoNormalspan classMsoHyperlinkhttptechnetmicrosoftcomenussecuritybulletinms13009spanopoppp classMsoNormal stylemarginleft15intextindent10inopnbspoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130015opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130018opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130019opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130020opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130021opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130022opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130023opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130024opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130025opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130026opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130027opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130028opopspanpp classMsoNormalspan classMsoHyperlinkhttpwwwcvemitreorgcgibincvenamecginameCVE20130029spanspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalspan stylecolorblackopnbspopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopnbspoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopnbspopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopnbspopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopnbspoppp classMsoNormalPostal addressopoppp classMsoNormalopnbspoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopnbspoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopnbspopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopnbspopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopnbspopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopnbspopbpp classMsoNormalAny material furnished by SCISAC is furnished on an quotas isquot basisopoppp classMsoNormalopnbspoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=649 Wed, 13 Feb 2013 11:52:54 EST html xmlnsvurnschemasmicrosoftcomvml xmlnsournschemasmicrosoftcomofficeoffice xmlnswurnschemasmicrosoftcomofficeword xmlnsmhttpschemasmicrosoftcomoffice200412omml xmlnshttpwwww3orgTRREChtml40headmeta httpequivContentType contenttexthtml charsetusasciimeta nameGenerator contentMicrosoft Word 12 filtered mediumif msostylev behaviorurldefaultVMLo behaviorurldefaultVMLw behaviorurldefaultVMLshape behaviorurldefaultVMLstyleendifstyle Font Definitions fontfacefontfamilyTahomapanose12 11 6 4 3 5 4 4 2 4fontfacefontfamilyOpenSymbolfontfacefontfamilyOpenSymbol Style Definitions pMsoNormal liMsoNormal divMsoNormalmargin0inmarginbottom0001ptfontsize120ptfontfamilyTimes New Romanserifalink spanMsoHyperlinkmsostylepriority99colorbluetextdecorationunderlineavisited spanMsoHyperlinkFollowedmsostylepriority99colorpurpletextdecorationunderlinepMsoAcetate liMsoAcetate divMsoAcetatemsostylepriority99msostylelinkBalloon Text Charmargin0inmarginbottom0001ptfontsize80ptfontfamilyTahomasansserifspanEmailStyle17msostyletypepersonalcomposefontfamilyCalibrisansserifcolorwindowtextspanBalloonTextCharmsostylenameBalloon Text Charmsostylepriority99msostylelinkBalloon TextfontfamilyTahomasansserifMsoChpDefaultmsostyletypeexportonlypage WordSection1size85in 110inmargin10in 10in 10in 10indivWordSection1pageWordSection1 List Definitions list l0msolistid1msolisttemplateids1list l0level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l0level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l0level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1msolistid2msolisttemplateids2list l1level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l1level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l1level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2msolistid3msolisttemplateids3list l2level1msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop5inmsolevelnumberpositionlefttextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level2msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop75inmsolevelnumberpositionleftmarginleft75intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level3msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop10inmsolevelnumberpositionleftmarginleft10intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level4msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop125inmsolevelnumberpositionleftmarginleft125intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level5msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop15inmsolevelnumberpositionleftmarginleft15intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level6msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop175inmsolevelnumberpositionleftmarginleft175intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level7msolevelnumberformatbulletmsoleveltextF0B7msoleveltabstop20inmsolevelnumberpositionleftmarginleft20intextindent25inmsoasciifontfamilySymbolmsohansifontfamilySymbolmsobidifontfamilyOpenSymbollist l2level8msolevelnumberformatbulletmsoleveltext25E6msoleveltabstop225inmsolevelnumberpositionleftmarginleft225intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbollist l2level9msolevelnumberformatbulletmsoleveltext25AAmsoleveltabstop25inmsolevelnumberpositionleftmarginleft25intextindent25inmsoasciifontfamilyOpenSymbolmsohansifontfamilyOpenSymbolmsobidifontfamilyOpenSymbololmarginbottom0inulmarginbottom0instyleif gte mso 9xmloshapedefaults vextedit spidmax2050 xmlendifif gte mso 9xmloshapelayout vexteditoidmap vextedit data1 oshapelayoutxmlendifheadbody langENUS linkblue vlinkpurplediv classWordSection1table classMsoNormalTable border0 cellspacing0 cellpadding0 stylebordercollapsecollapsetrtd width103 valigntop stylewidth7755ptpadding0in 54pt 0in 54ptp classMsoNormalspan stylefontsize100ptimg width89 height89 idPicture_x0020_1 srcimagesSCISACbmpspanbspan stylefontsize140ptopopspanbptdtd width487 stylewidth36525ptpadding0in 54pt 0in 54ptp classMsoNormalbspan stylefontsize140ptSouth Carolina Information Sharing and Analysis Centerspanbopopptdtrtablep classMsoNormalopoppp classMsoNormalbSC INFORMATION SHARING AND ANALYSIS CENTER BULLETIN bopoppp classMsoNormalopoppp classMsoNormalbDATE ISSUEDb 2122013 opoppp classMsoNormal bopopbpp classMsoNormal stylemarginleft10intextindent10inbSUBJECTb span stylecolorblackVulnerability in Media Decompression Could Allow Remote Code Executionbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackOVERVIEWspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackA remote code execution vulnerability exists in the way that Microsoft DirectShow handles media content DirectShow is a media streaming architecture for Windows that allows video playback or capture The vulnerability could allow remote code execution if a user opens a specially crafted Microsoft Office document such as a ppt file that contains a specially crafted embedded media file or by visiting a website hosting specially crafted streaming content designed to exploit this vulnerability This security update addresses the vulnerability by correcting the way that DirectShow handles specially crafted media content opopspanpp classMsoNormalspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could allow an attacker to gain the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsopopspanpp classMsoNormalspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackDESCRIPTIONspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackA remote code execution vulnerability exists in the way that Microsoft Windows handles media content The vulnerability could allow remote code execution if a user opens a specially crafted Microsoft Office document such as a ppt file that contains a specially crafted embedded media file or by visiting a website hosting specially crafted streaming content designed to exploit this vulnerability opopspanpp classMsoNormalspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackWindows systems which use any of the following components are at risk from this vulnerabilityopopspanpp classMsoNormalspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows XP Service Pack 3opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows XP Professional x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Server 2003 Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Server 2003 x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Server 2003 with SP2 for Itaniumbased Systemsopoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Vista Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Vista x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Server 2008 for 32bit Systems Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Server 2008 for x64based Systems Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl0 level1 lfo1Quartzdll DirectShow on Windows Server 2008 for Itaniumbased Systems Service Pack 2opopliulp classMsoNormalspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackSuccessful exploitation could allow an attacker to gain the same privileges as the logged on user Depending on the privileges associated with the user an attacker could then install programs view change or delete data or create new accounts with full user rightsbopopbspanpp classMsoNormalbspan stylecolorblackopopspanbpp classMsoNormalbspan stylecolorblackSYSTEM AFFECTEDbrbrspanbspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows XP Service Pack 3opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows XP Professional x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Server 2003 Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Server 2003 x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Server 2003 with SP2 for Itaniumbased Systemsopoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Vista Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Vista x64 Edition Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Server 2008 for 32bit Systems Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Server 2008 for x64based Systems Service Pack 2opoplili classMsoNormal stylecolorblackmsolistl1 level1 lfo2Windows Server 2008 for Itaniumbased Systems Service Pack 2bopopbliulp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackopopspanbpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRISKspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackGovernmentbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium government entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall government entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackbopopbspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackBusinessesbrbrspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackLarge and medium business entities bHighbopopspanpp classMsoNormal stylemarginleft15intextindent10inspan stylecolorblackSmall business entities bHighbopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackHome users spanbbspan stylecolorblackHighspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackRECOMMENDATIONSspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackWe recommend the following actions be takenopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpul stylemargintop0in typediscli classMsoNormal stylecolorblackmsolistl2 level1 lfo3Apply appropriate patches provided by Microsoft to vulnerable systems immediately after appropriate testingopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Run all software as a nonprivileged user one without administrative privileges to diminish the effects of a successful attackopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Remind users not to visit untrusted websites or follow links provided by unknown or untrusted sourcesopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Remind users not to download or open files from untrusted websitesopoplili classMsoNormal stylecolorblackmsolistl2 level1 lfo3Remind users not to open email attachments from unknown or untrusted sourcesopopliulp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inbspan stylecolorblackREFERENCESspanbspan stylecolorblackopopspanpp classMsoNormal stylemarginleft10intextindent10inspan stylecolorblackopopspanpp classMsoNormalspan classMsoHyperlinkbMicrosoftbopopspanpp classMsoNormalspan classMsoHyperlinkhttptechnetmicrosoftcomenussecuritybulletinms13011spanopoppp classMsoNormal stylemarginleft15intextindent10inopoppp classMsoNormalspan classMsoHyperlinkbCVEbopopspanpp classMsoNormalspan classMsoHyperlinkhttpcvemitreorgcgibincvenamecginame20130077spanspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopopspanpp classMsoNormalspan stylecolorblackopopspanpp classMsoNormalPlease feel free to contact the SC ISAC if you have any questions or need any additional informationopoppp classMsoNormalopoppp classMsoNormalThe SC ISAC will provide amplifying information as it becomes availablebopopbpp classMsoNormalbopopbpp classMsoNormalbSCISAC Contact Informationopopbpp classMsoNormalbopopbpp classMsoNormalEmail SCISACcioscgovopoppp classMsoNormalSC ISAC Security Line 8038961650opoppp classMsoNormal24hour hotline 1 8038960001opoppp classMsoNormalFax 1 8038960375opoppp classMsoNormalopoppp classMsoNormalPostal addressopoppp classMsoNormalopoppp classMsoNormalSCISACopoppp classMsoNormalDSIT Budget and Control Boardopoppp classMsoNormal4430 Broad River Roadopoppp classMsoNormalColumbia SC 29210opoppp classMsoNormalSCISAC is available via hotline 08001700 EST GMT5 EDT GMT4 opoppp classMsoNormalMonday through Fridayopoppp classMsoNormalopoppp classMsoNormalbUsing Encryptionopopbpp classMsoNormalbopopbpp classMsoNormalWe strongly urge you to encrypt sensitive information sent by email Our opoppp classMsoNormalpublic PGP key is available frombopopbpp classMsoNormalbopopbpp classMsoNormalbhttpsscisacscgovpublickeyopopbpp classMsoNormalbopopbpp classMsoNormalbNO WARRANTYopopbpp classMsoNormalbopopbpp classMsoNormalAny material furnished by SCISAC is furnished on an as is basisopoppp classMsoNormalopoppp classMsoNormalSCISAC makes no warranties of any kind either expressed or implied as to opoppp classMsoNormalany matter including but not limited to warranty of fitness for a particularopoppp classMsoNormalpurpose or merchantability exclusivity or results obtained from use of the opoppp classMsoNormalmaterial SCISAC does not make any warranty of any kind with respect to opoppp classMsoNormalfreedom from patent trademark or copyright infringementopoppdivbodyhtml http://www.coastal.edu/its/announcements/portal.html?id=648 Wed, 13 Feb 2013 11:51:14 EST