Tech Center Security Management

Dark Reading's Security Management Tech Center is your destination for news and information surrounding the administrative and professional tasks that information security professionals must perform every day. Written for career security pros, The Security Management Tech Center is designed to provide insight on security career choices, staffing and budgetary issues, and day-to-day administrative tasks such as security reporting and architecture planning.

Featured Commentary

News

More Stories

By The Numbers

Information Security Salaries Split

Infosec managers saw their salaries rise, while staffers felt a slight dip in 2013.

Information Security Salaries Split

Source: InformationWeek 2013 IT Salary Survey

Commentary

Around the Web

Sign up for the Dark Reading Daily email newsletter

*Required field

Privacy Statement

Dark Reading Digital Magazine

In This Issue

  • Endpoint Security: End user security requires layers of tools and training as employees use more devices and apps.
  • Security Isn't A Piece Of Cake: It's time we rethink the conventional wisdom about security layering.
  • BYOD Is Here To Stay: Trying to keep employees' devices off the network is futile.
Download Now

Bugs

Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database

  • CVE-2013-3744

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400.

  • CVE-2013-3743

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.

  • CVE-2013-2473

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2464, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, and CVE-2013-2472.

  • CVE-2013-2472

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2464, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, and CVE-2013-2473.

  • CVE-2013-2471

    Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2464, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2472, and CVE-2013-2473.