SecurePurdue - Advisory Alerts

Channel: SecurePurdue - Advisory Alerts

Adobe Flash Player: Multiple Vulnerabilities

July 16, 2007, 10:00 pm

Adobe Flash Player and Flash Plugin have been found to have multiple vulnerabilities which could allow an attacker to remotely execute code on a vulnerable system, obtain sensitive information via...

View Article

Critical Vulnerabilities In Adobe Flash Content May Lead to Cross-Site...

January 13, 2008, 10:00 pm

Critical vulnerabilities in Adobe Flash content have been found which leave potentially hundreds of thousands of websites and a considerable percentage of major Internet sites susceptible to Cross-Site...

View Article

Multiple Xserver and XInput Vulnerabilities

January 22, 2008, 10:00 pm

Multiple vulnerabilities have been discovered in the server code of the X window system, which can cause an assortment of overflows. Local exploitation of these overflows cause the X server to crash or...

View Article

Adobe Acrobat and Reader Vulnerability affects Windows and Macs

June 29, 2008, 10:00 pm

Adobe has reported a critical vulnerability in Acrobat and Reader. The vulnerability could allow a malicious user to crash an affected machine to gain full access. Most versions are affected.

View Article

Multiple reports of attempted and successful SQL injection attacks against...

July 17, 2008, 10:00 pm

Multiple reports of attempted and successful SQL injection attacks against campus web sites.

View Article

Critical SSH Issue Involving Education and Research Institutions

August 25, 2008, 10:00 pm

Starting in March of this year, a large number of research and education systems have been compromised using stolen SSH keys. The keys are used to gain system access as an unprivileged user, and then...

View Article

Phishing Emails Threatening Internet Service Disconnection Carry Virus

September 16, 2008, 10:00 pm

This email has been reported by numerous users of Purdue email systems. In some cases it has been reported that the .exe file contained in the zip file attachment named "user-EA49943X-activities.zip"...

View Article

Critical Unpatched Internet Explorer Issue

December 11, 2008, 10:00 pm

An unpatched vulnerability exists in Internet Explorer 7 which may allow an attacker to compromise a user's system simply by having the user browse to a specially crafted web page. User's should be...

View Article

Microsoft Office Web Components ActiveX Remote Code Execution Vulnerability

July 12, 2009, 10:00 pm

The Microsoft Office Web Components ActiveX control used by Internet Explorer contains a vulnerability that when exploited will allow an attacker to gain rights of the local user and allow remote code...

View Article

Microsoft Server Message Block (SMB) Vulnerability allows for Remote Code...

October 1, 2009, 10:00 pm

Update 2: Microsoft has released a "Fix-it" tool to automatically disable the SMBv2 service, which is presently the only known mitigation technique other than implementing firewall rules to block SMB...

View Article

Java Zero-Day Patched

April 15, 2010, 10:00 pm

Sun Java vulnerability caused by an input handling error that can be exploited to execute Java based programs has been reported. NOTE: Patch Available

View Article

(UPDATED 1/14) Java 7 Zero Day Vulnerability

January 10, 2013, 10:00 pm

On January 10, 2013, security researchers reported an unpatched vulnerability in Oracle Java 1.7u10.

View Article

Phishing Email Alert: [Your Webmail Account is on Restriction]

January 24, 2013, 12:36 pm

A spear-phishing attempt is circulating targeting Purdue users.

View Article

Phishing Email Alert: {Suspension Of Your purdue.edu Account}

January 27, 2013, 10:00 am

New spear phishing attempt targeting Purdue students, faculty, and staff.

View Article

Phishing Email - "Your myMail Account is on Restriction"

April 18, 2013, 10:00 pm

There was recently a spear-phishing attempt that was sent out to Purdue users that attempted to trick them into logging into a fake myMail login page.

View Article

Phishing Email Alert: Important Notification - Purdue Career Account Access

May 6, 2013, 9:00 pm

New spear phishing attempt targeting Purdue students, faculty, and staff.

View Article

Phishing Email Alert: "Help Desk::code 8969405"

July 6, 2013, 10:00 pm

New spear phishing attempt targeting Purdue students, faculty, and staff.

View Article

Advisory: Phishing Email Alert: "New Message" - 7/8/2013

July 8, 2013, 1:00 pm

New spear phishing attempt targeting Purdue students, faculty, and staff.

View Article

DNS Amplification attacks

August 25, 2013, 10:00 pm

We have received several external notices of open DNS servers that answer recursive requests on the Purdue network. These servers can be used to attack other organizations through Distributed Denial of...

View Article