You can now find Cyber Kendra on Google News!

Adobe Issues Security Updates for its Products

Adobe Issues Security Updates for its Products, Adobe patches Flash and zero-day Acrobat bugs, Adobe security updates, Adobe vulnerability reports, Adobe flash zero day, Adobe reader zero-day
Adobe team have just released the security updates of there several products which includes updates for Flash Player, Adobe Reader and Acrobat. On this update, Adobe release the seven security fix for the Flash player and one for other each. Company says that Windows users are affected with this vulnerability and they recommends there users to updates as soon as possible as is being exploited in the wild.

The lone vulnerability in Acrobat and Reader for Windows could allow an attacker to circumvent sandbox protection. Users of Adobe Reader 11.x for Windows should update to version 11.0.08. Users of Adobe Reader 10.x for Windows should update to version 10.1.11.

These vulnerability was reported by Costin Raiu and Vitaly Kamluk, researcher from Kaspersky. On the blog post researcher says that the exploitation of these vulnerability is rare case, but it is important to patch every security issue of the products that is used in a large scale. 

There are more than million of users using flash player and adobe reader, so the security concerns of these users is much important.

Users may update Acrobat and Reader with the Help > Check for Updates menu option. Flash Player users may download the latest version from Adobe at this page. Users of Internet Explorer on Windows 8 and above and of Google Chrome will receive browser updates from those companies with fixed versions of their integrated Flash Player.

Adobe has released security updates for Adobe Flash Player 14.0.0.145 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.394 and earlier versions for Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. The new version will be 14.0.0.176 in most cases. Google Chrome users will get 14.0.0.177 and the NPAPI plugin for Firefox will be version 14.0.0.179. Flash Player 11.2.202.394 and earlier versions for Linux are vulnerable and users should update to 11.2.202.400.

At last Adobe mention that the release secuirty updates resolve the memory leakage vulnerabilities, security bypass vulnerability (CVE-2014-0541) and also use-after-free vulnerability that could lead to code execution (CVE-2014-0538).

Post a Comment