Apple Releases Safari 5.0.1 and Safari 4.1.1

Apple has released Safari 5.0.1 and Safari 4.1.1 for Windows and Mac OS X to address multiple vulnerabilities in Safari and WebKit. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or obtain sensitive information.

US-CERT encourages users and administrators to review Apple article HT4276 and apply any necessary updates to help mitigate the risks.

SANS Network Security 2010

SANS will bring you the best in network security training, certification, and up-to-the-minute research on the most important topics in the industry today.

http://www.sans.org/network-security-2010/

TA10-194B: Oracle Updates for Multiple Vulnerabilities

Oracle Updates for Multiple Vulnerabilities

http://www.us-cert.gov/cas/techalerts/TA10-194B.html

VU#940193: Microsoft Windows automatically executes code specified in shortcut files

Microsoft Windows automatically executes code specified in shortcut(LNK and PIF)files.

http://www.kb.cert.org/vuls/id/940193

Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution - 7/20/2010

Revision Note: V1.2 (July 20, 2010): Clarified the vulnerability exploit description and updated the workarounds. Advisory Summary:Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as well as workarounds and mitigations for this issue.

http://www.microsoft.com/technet/security/advisory/2286198.mspx