Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > May 2009

May 2009

May 2009

- 3847 - Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution

Microsoft is investigating new public reports of a new vulnerability in Microsoft DirectX. The vulnerability could allow remote code execution if user opened a specially crafted QuickTime media file.

- 3839 - Vulnerability in Internet Information Services Could Allow Elevation of Privilege

Microsoft is investigating new public reports of a possible vulnerability in Microsoft Internet Information Services (IIS). An elevation of privilege vulnerability exists in the way that the WebDAV extension for IIS handles HTTP requests. An attacker could exploit this vulnerability by creating a specially crafted anonymous HTTP request to gain access to a location that typically requires authentication.

- 3838 - Security Updates for Adobe Reader and Acrobat

Security Updates for Adobe Reader and Acrobat now available for download

- 3837 - APPLE-SA-2009-05-12 Security Update 2009-002 / Mac OS X v10.5.7

APPLE-SA-2009-05-12 Security Update 2009-002 / Mac OS X v10.5.7 is now available

- 3836 - APPLE-SA-2009-05-12 Safari 4 Public Beta Security Update

Safari 4 Public Beta Security Update now available

- 3835 - APPLE-SA-2009-05-12 Safari 3.2.3

Safari 3.2.3 for Windows is now available

- 3834 - Microsoft Security Bulletin Summary for May 2009

Microsoft releases a free monthly security notification advising its customers of updates to its software; the latest security advisory is now available and can be found at: http://www.microsoft.com/technet/security/bulletin/ms09-may.mspx.  To receive automatic notifications whenever Microsoft Security Bulletins are issued, subscribe to Microsoft Technical Security Notifications on http://www.microsoft.com/technet/security/bulletin/notify.mspx.
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |