Tanzania Computer Emergency Response Team

Mozilla has released security updates to address vulnerabilities in Firefox prior to ver.64 and Firefox ESR prior to ver.60.4. Exploitation of these vulnerabilities may allow an attacker to take control of affected product. Users and administrators are encouraged to review Mozilla Security Advisories and apply necessary updates.

Advisory No: TZCERT/SA/2018/12/05 Date of First Release: 6 December 2018 Source: Microsoft Software Affected: Team Foundation Server 2018 Update 1.1 Team Foundation Server 2018 Update 3 Team Foundation Server 2018 Update 3.1 Team Foundation Server 2017 Update 3.1 Overview: Multiple vulnerabilities have been identified in Microsoft Team Foundation Server that …

Advisory No: TZCERT/SA/2018/12/05 Date of First Release: 6th December, 2018 Source: PHP, CISCO Software Affected: PHP versions 5.x through 7.1.24 Overview: Potential vulnerability has been discovered in Hypertext Pre-processor (PHP) which can allow a remote attacker to cause denial of service condition on the affected system. Description: It has been …

Cisco has released security update to address vulnerability in Cisco Prime License Manager. Exploitation of this vulnerability may allow an attacker to take control of affected database with privileges of the postgres user. Users and Administrators are encouraged to review Cisco Security Advisory and apply necessary updates.

Samba has released security update to address multiple vulnerabilities in samba. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review released samba security announcement and apply necessary updates. For more information visit CVE-2018-14629, CVE-2018-16841, CVE-2018-16851, CVE-2018-16852, CVE-2018-16853 …