Days after Microsoft released its monthly security update, Apple, Cisco and Oracle have released security updates of their own.
The Apple update addresses a vulnerability in the 10.5 and 10.6 versions of Mac OS X and Mac OS X Server. Discovered by security researcher Charlie Miller, the flaw could allow an attacker to exploit the Type Services component and remotely execute code on a targeted system.
Cisco's patch addresses an ActiveX vulnerability in its Secure Desktop offering. If exploited, it too could allow an attacker to remotely execute code by way of a web-based attack.
Oracle, meanwhile, issued an update to its newly acquired Java platform. The Java SE update patches two remote code execution vulnerabilities in the handling of web-based Java applications. The company noted that the vulnerabilities were not a risk for Java server deployments or desktop Java applications.
The Java update comes just two days after Oracle released its scheduled monthly update addressing 47 vulnerabilities in software from Oracle and Sun.
The US Computer Emergency Response Team is advising administrators to review each of the security updates and patch vulnerable components.
And, yep, it'll run Android rather than RiscOS
US engineering giant's cost-cutting outsourcing plan is on the rocks, according to insiders
HP Envy X2 laptop only affordable if you've got loadsamoney
Counterfeit code-signing certificates enabling hackers to hide malware being sold by cyber criminals
Certificates can be used as part of layered obfuscation to evade detection by anti-virus software