CDSA News

Weekend Vulnerability and Patch Report, March 9, 2014 (Citadel Information Group)

Important Security Updates

D-Link DIR-100 Wired Router: D-Link has released a firmware update for its DIR-100 wired router to fix 4 vulnerabilities. Update to firmware version 4.03B13. Updates can be found on D-Link’s website.

Dropbox: Dropbox has released version 2.6.2 for its file hosting program. Updates are available at Dropbox’s website.

Google Chrome: Google has released version 33.0.1750.146 of Chrome for Windows, Mac, Linux and Chrome Frame to fix 6 highly critical vulnerabilities in previous versions. Updates are available through the program.

Google Picasa: Google has released version 3.9 Build 137.114. Updates are available at the Picasa website.

Opera: Opera has released version 20.00 to fix moderately critical unpatched vulnerabilities in previous versions. Updates are available from within the browser or from Opera’s website.

Current Software Versions

Adobe Flash 12.0.0.70 [Windows 7: IE]

Adobe Flash 12.0.0.70 [Windows 7: Firefox, Mozilla]

Adobe Flash 12.0.0.70 [Windows 8: IE]

Adobe Flash 12.0.0.70 [Macintosh OS X: Firefox, Opera, Safari]

Adobe Reader 11.0.06

Dropbox 2.6.2

Firefox 27.0.1

Google Chrome 33.0.1750.146

Internet Explorer 11.0.9600.16518 [Windows 7: IE]

Internet Explorer 11.0.9600.16384 [Windows 8: IE]

Java SE 7 Update 51

QuickTime 7.7.5

Safari 5.1.7

Safari 7.0.2 [Mac OS X]

Skype 6.14.0.104

For Your IT Department

Cisco Multiple Products: Secunia reports that Cisco has released updates for its CVR 100W Wireless-N VPN Router, RV215W Wireless-N VPN Router, RV110W Wireless-N VPN Firewall, 2000 Series Wireless LAN Controller, 2100 Series Wireless LAN Controller, 2500 Series Wireless Controller, 4400 Series Wireless LAN Controller, 5500 Series Wireless Controller, Catalyst 6500 Series Wireless Service Module (WiSM), Wireless LAN Controller (WLC 4.x, 5.x, 6.x, 7.x), and others. Apply updates.

Citrix Net Scaler / NetScaler VPX: Secunia reports that Citrix has released updates for its NetScaler and NetScaler VPX to fix at least 8 vulnerabilities. Update to version 10.1-118.7, 10.0-77.5, or 9.3-64.4.

Citrix NetScaler SDX: Secunia reports that Citrix has relased updates for its NetScaler SDX to fix an error within the Service VM Virtual Machine Daemon reported in previous versions. Update to version 10.0-77.5 or 9.3-64.4.

SonicWALL Network Security Appliance (NSA) 2400: SonicWALL has released updates for its Network Security Applicance (NSA) 2400 Series to fix a vulnerability. Update to a fixed version.