• This vulnerability affects: Firefox 3.0.7 (and previous versions) for Windows, Linux, and Macintosh
• How an attacker exploits it: Multiple vectors of attack, including enticing one of your users to visit a malicious web page
• Impact: Various results; in the worst case, an attacker executes code on your user’s computer, gaining complete control of it
• What to do: Upgrade to Firefox 3.0.8

Apple’s October Update Plugs Holes in XML, PHP, PDF

OS X Security Update Fixes 40 Flaws

Severity: High

9 October, 2008

Summary:

§These vulnerabilities affect: OS X 10.4.x (Tiger) and OS X 10.5.x (Leopard), both client and server versions

§How an attacker exploits them: Multiple vectors of attack, including enticing one of your users into visiting a malicious web site, downloading a malicious document, or subscribing to a malicious RSS feed

§Impact: Various results; in the worst case, attacker executes code on your user’s computer, potentially gaining full control of it

§What to do: OS X administrators should download, test and install Security Update 2008-007

Severity: High

15 September, 2008

Summary:

§ These vulnerabilities affect: OS X 10.4.x (Tiger) and OS X 10.5.x (Leopard), both client and server versions

§ How an attacker exploits them: Multiple vectors of attack, including enticing one of your users into downloading and viewing malicious images, documents, or email

§ Impact: Various results; in the worst case, attacker executes code on your user’s computer, potentially gaining full control of it

§ What to do: OS X administrators should download, test and install Security Update 2008-006 or the OS X 10.5.5 update