In the past month Mozilla, Apple and Google released updated versions of their respective browsers and email software. Vulnerabilities addressed include execution of arbitrary code, denial-of-service conditions, bypassing security restrictions, operating with escalated privileges, and performing cross-site scripting attacks.
The IT Security office advises users restart their browsers to facilitate updating.
Apple Safari prior to version 6.0.2
Versions of Firefox prior to version 17
Versions of Thunderbird prior to version 17
Versions of Firefox ESR prior to version 10.0.11
Versions of Thunderbird ESR prior to version 10.0.11
Versions of SeaMonkey prior to version 2.14
Versions of Google Chrome prior to version 23.0.1271.95
Security bulletin names:
Stable Channel Update
Security Advisories for Firefox ESR
Security Advisories for Firefox
Security Advisories for Thunderbird
Security Advisories for Thunderbird ESR
Security Advisories for SeaMonkey
APPLE-SA-2012-11-01-2 Safari 6.0.2
Additional information about this vulnerability can be viewed at:
If you have any questions, please contact the IT Service Center at 303-735-4357 (or 5-HELP from an on-campus phone) or firstname.lastname@example.org. Email and phone help is available Mondays through Thursdays, 7:00 a.m. to 10:00 p.m.; Fridays 7:00 a.m. to 7:00 p.m.; and Saturdays and Sundays, noon to 6:00 p.m.
OIT has defined the following categories to describe the severity of security risks:
URGENT severity represents a broad threat to the entire campus community.
SEVERE severity included remote exploits and worms.
IMPORTANT severity includes virus and local exploits for commonly used services.