Cisco Releases Security Advisories

Original release date: May 21, 2014 Cisco has released two security advisories to address multiple product vulnerabilities, one of which may allow a…

Unlicensed National Information Infrastructure (U-NII) Devices in the 5 GHz Band

Unlicensed National Information Infrastructure (U-NII) Devices in the 5 GHz Band – Reference IEEE – Published 05-01-2014

This document amends the Commission rules governing the operation of unlicensed National Information Infrastructure (U-NII) devices in the 5 GHz band .. to make broadband technologies more widely available for consumers and businesses by increasing power and permitting outdoor use in the U-NII-1 band and by adding 25 megahertz to the U-NII-3 band; it also takes steps to reduce the potential for harmful interference to incumbent operations. The proceeding satisfies the requirements of the Spectrum Act, by which Congress required that the Commission begin a proceeding regarding U-NII devices in the 5 GHz band within a year if it determined, after consultation with NTIA, that incumbents will be protected and their missions will not be compromised. Effective June 2, 2014 except for § 15.407(j), which contains information collection requi

SB14-132 Vulnerability Report

National Cyber Awareness System:: Original release date: May 12, 2014 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have…

Release of NIST Special Publication 800-52 Revision 1

NIST Computer Security Division Released the April 2014 ITL Security Bulletin – 

Topic of the Month:
Release of NIST Special Publication 800-52 Revision 1, Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations

Link to the April 2014 Bulletin on the NIST CSRC website (PDF):

Cisco Releases Security Advisory for WebEx Players

Cisco Releases Security Advisory for WebEx Players

National Cyber Awareness System: Original release date: May 08, 2014

Cisco has released a security advisory to address multiple buffer overflow vulnerabilities in Cisco WebEx Recording Format and Advanced Recording Format Players. Successful exploitation of the vulnerabilities could cause an affected player to crash or allow a remote attacker to execute arbitrary code.  The following updates are available:

  • Cisco WebEx Business Suite (WBS29) client builds T29.2 or later
  • Cisco WebEx Business Suite (WBS28) client builds T28.12 or later
  • Cisco WebEx Business Suite (WBS27) client builds T27TLSP32EP16 (27.32.16) or later
  • Cisco WebEx 11 versions prior to 1.2.10 with client builds