Adobe
Adobe Patches Critical Memory Vulnerabilities in Flash Player, AIR | threatpost
Adobe has repaired a number of critical vulnerabilities in Flash Player that could lead to system crashes or remote attackers controlling computers running compromised software. None of the vulnerabilities are being exploited, Adobe said, and added that users should upgrade Flash Player. Version 11.4.402.287 and earlier are affected on Windows and Apple Macintosh. There are also fixes [...]
Crisis Financial Malware Spreads Via Virtual Machines | InformationWeek
Malicious code, disguised as a VeriSign-approved Adobe Flash installer, affects Macs, Windows PCs, and Windows Mobile devices. The recently discovered Crisis financial malware can spread using capabilities built into VMware virtual machines. Also known as Morcut, the malicious rootkit–spread via an installer that’s disguised as an Adobe Flash Player installer–was first discovered last month by antivirus [...]
Google warns of using Adobe Reader – particularly on Linux | The H Security
On its August Patch Day, Adobe has fixed numerous critical memory-related bugs in Reader for Windows and Mac OS X – but has chosen to overlook Linux users. The researchers who discovered the holes now fear that potential attackers could find enough clues to build an exploit by comparing the current Windows version of Reader with the previous one. This [...]
Adobe Patches Critical Flash Bug, Releases Massive Reader Update | threatpost
Adobe has issued a fix for a critical Flash vulnerability that attackers already are taking advantage of with targeted attacks. The flaw can allow attackers to get complete control of vulnerable machines, and Adobe said that it’s aware of attacks that are going after Flash on Internet Explorer. The CVE-2012-1535 vulnerability in Flash, when exploited, either [...]
Adobe gives in and patches CS5 for free | TechEye
Gives up short for “most evil” outfit of the year award. Adobe, which had been heading for the title of most evil company for 2012, has changed its mind about requiring customers to pay to get recent security patches for its Photoshop, Illustrator and Flash Professional products. The company had been up for the award [...]
Adobe patches Flash Player hole exploited in the wild | HelpNetSecurity
Adobe has released a security update for Flash Player for Windows, Macintosh, Linux and Android that address the object confusion vulnerability (CVE-2012-0779) that is currently being used in the wild. The attackers target only Windows users so far, but Adobe advises all users to update their software. According to Adobe and to Symantec researchers, the [...]
Microsoft and Adobe to release critical patches today | SC Magazine UK
Microsoft is to release six patches for 11 vulnerabilities as part of its April security update, scheduled for today. Four of the six fixes on its monthly Patch Tuesday will be rated as ‘critical’ and address flaws in Windows, Internet Explorer (including version 9), Office, SQL Server and server software and developer tools. Three of [...]
Adobe Patches Flash Player, Unveils New Silent Updater | threatpost
Adobe pushed out a security update for its Flash Player Wednesday, patching two critical holes and introducing a new silent update option. The update, Adobe Flash Player 11.2, addresses two memory corruption vulnerabilities in Windows, Mac, Linux and early Android builds that could lead to remote code execution according to a bulletin(APSB12-07). Users updating to 11.2 [...]
Waves of Attacks Target Adobe Reader Bug From 2010 – threatpost
Thanks to the wonderful tendency of users not to update their applications, old vulnerabilities never die, they just get overtaken by newer and shinier ones. The attackers know this well, and every once in a while they serve up a nice reminder to the rest of us. The most recent one of these is a [...]
Attackers Reused Adobe Reader Exploit Code From 2009 In Extremely Targeted Hacks – threatpost
The targeted attack that exploited a previously unknown vulnerability in Adobe’s Reader application last month was extremely focused on defense industrial base firms, and affected just a handful of systems, according to a company spokesman. Fewer than 20 machines, spread across a number of firms in the defense industrial base, were ultimately targeted in the [...]
Adobe Zero-Day Attack Part Of Wider Campaign – Dark Reading
Symantec research points to well-funded attackers who use so-called Sykipot malware to target defense contractors, telecommunications firms, computer hardware companies, chemical companies, energy companies, and government. The latest Adobe Reader and Acrobat zero-day attack is part of a larger, longer-term targeted attack campaign aimed mainly at stealing intellectual property from the U.S. and U.K. industries [...]
Sweden is under attack – mass infection and new exploits! – Securelist
Web based threats such as malicious links on social medias, infected websites and malicious ads are terms that we read about quite often. We security experts have for quite some time tried to emphasize the importance of protecting both your website and computer from being infected, since these malicious websites often exploit client vulnerabilities. These [...]
Adobe Fixes 13 Critical Flaws in Reader and Acrobat – threatpost
Adobe has released its quarterly patch update for Acrobat and Reader, fixing a total of 13 vulnerabilities in the two applications. The flaws affect Reader on Windows, Unix and OS X and Acrobat for Windows and OS X. The vulnerabilities Adobe fixed Tuesday all are considered critical, and the company recommended that users upgrade their [...]
Adobe admits Google fuzzing report led to 80 ‘code changes’ in Flash Player – ComputerWorld
After spat with Google engineer, explains why it didn’t spell out each bug. Computerworld – Adobe on Friday acknowledged that as many as 80 bugs in Flash Player were reported by a Google security engineer as it defended its decision not to spell out details of the vulnerabilities. Google also cited the same number, apparently [...]
Adobe issues critical updates for Flash, Shockwave – SC Magazine
On the heels of a large Patch Tuesday load from Microsoft, Adobe on Tuesday released a slew of security updates affecting several of its products. “Critical” updates were released for Flash Player, Flash Media Server, Shockwave Player and Photoshop CS5. In addition, an “important†update was released for Adobe’s help-authoring tool RoboHelp. Adobe said it [...]
