The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by their research department for the Week of June 16, 2014.
The National Institute of Standards and Technology (NIST) has recorded vulnerabilities labeled as high, medium and low according to their severity.
Common vulnerabilities and their impact recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week are:
Vulnerabilities in Adobe Photoshop CS5 if exploited can allow hackers to execute malicious code via a long Collada asset element in a DAE file. It can also allow unauthorized disclosure of information, unauthorized modification of data and disruption of service by attackers.
- Find out the vulnerable versions of Adobe Photoshop CS5 from here: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2052
- Vulnerabilities in Cisco IOS XR 4.1.2 through 5.1.1 on ASR 9000 devices if exploited can allow hackers to cause a denial of service attack.
Find out the vulnerable versions of Cisco IOS from here: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2176
- Vulnerabilities in Microsoft Internet Explorer 9 through 11 if exploited allow cyber-criminals to execute arbitrary code or cause a denial of service attack (memory corruption) via a malicious web site.
Find out the vulnerable versions of Microsoft Internet Explorer from here: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2782
- Vulnerabilities in Symantec Web Gateway (SWG) before 5.2.1 if exploited allow remote attackers to execute malicious commands via unspecified paths.
Find out the vulnerable versions of Symantec Web Gateway from here: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5017
- Cross-site scripting (XSS) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management – Manager Web Option 07-00 through 07-54 if exploited allows hackers to inject arbitrary web script or HTML via unknown paths.
Find out the vulnerable versions of Hitachi Tuning Manager from here: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4189
There are many such vulnerable software ranked in the division of high, medium, and low severities.
To know more about these vulnerable software and the affected versions read the US-CERT Cyber Security Bulletin from here: https://www.us-cert.gov/ncas/bulletins/SB14-174
