Showing posts with label memory corruption. Show all posts
Showing posts with label memory corruption. Show all posts

Wednesday, February 15, 2012

Adobe Flash Player: Critical Security Update to v11.1.102.62

--
And then Adobe released a critical security update for their Flash Player! Be sure to update ASAP to Adobe Flash Player version 11.1.102.62. You can 1-step download the update from here:

http://get.adobe.com/flashplayer/?promoid=BUIGP

The update includes six security patches relevant to Mac OS X users. You can read Adobe's provided details here:


For those interested, three of the security patches involve memory corruption. Two of the patches repair security bypass vulnerabilities. One of the patches is for a cross-site scripting vulnerability.

Don't forget to update to yesterday's new critical security update version of Adobe Shockwave Player as well!
--
Posted by at 1 comment:
Labels: , , , ,

Tuesday, February 14, 2012

Adobe Shockwave Player: Critical Security Update to v11.6.4.634

--
Adobe has again done the right thing and ignored their own idiotic quarterly updates schedule. I'm glad someone over there has a brain in their head. This time the problem is with Adobe Shockwave Player. Adobe says:
These vulnerabilities could allow an attacker, who successfully exploits these vulnerabilities, to run malicious code on the affected system.
Update Adobe Shockwave Player to version 11.6.4.634 immediately. You can download it here:


http://get.adobe.com/shockwave/otherversions/


A good article about the many dangerous security flaws in the previous version is available at ZDNet:


You can read Adobe's detailed explanation of the critical security issues here:


And for those interested: 
ALL the critical security flaws are due to poor memory management, still the bane of modern code engineering. (o_0)
--
Posted by at No comments:
Labels: , , ,

Wednesday, August 25, 2010

Adobe 'Out Of Band' CRITICAL Update Parade:
Shockwave Player v11.5.8.612

--
Adobe continues their parade of CRITICAL security updates with Shockwave Player v11.5.8.612. Thankfully, you only have to make one click on one page to download it. (Someone over there is getting the clue). And get this! (Don't go into shock!) It's 64-bit! Here is the download page link:

Shockwave Player v11.5.8.612

You can read about the security patches HERE.

To quote Adobe:
The vulnerabilities could allow an attacker, who successfully exploits these vulnerabilities, to run malicious code on the affected system.
My quick summary:

There are 20 security patches.

-> 16 patches are for memory corruption vulnerabilities (aka buffer overflow bugs).

-> 2 patches are for DOS (denial of service) attack issues.

-> 1 patch is for a pointer offset vulnerability.

-> 1 patch is for an integer overflow vulnerability (aka buffer...).

The update is for both Mac and Windows versions. Adobe don't note any in-the-wild exploits at this point. But as per usual, keep up to date with App and OS security patches!
--
Posted by at No comments:
Labels: , , , , ,
Subscribe to: Posts (Atom)