Tag: Adobe

Important update for Adobe Flash Player Adobe systems released an update on 12 March for their Adobe Flash product to resolve an issue that could allow a remote attacker to take full control of the affected system.  This update applies to all supported platforms (Windows, Apple / Mac, Linux, etc.) and has been given a Priority Rating of 1, meaning that it's likely being actively exploited already (though I haven't seen exploits listed in exploits-db.org or osvdb.org yet). Details on the vulnerability and it's CVE ID's are available here.  All users are encouraged to update their Adobe Flash installs to the latest version as soon as possible.  Cyber Tech Cafe MyIT clients already have the updated versions available and need only reboot to complete the update.

Ok, so this is ripped direct from the article on SANS, but Adobe has released several updates with the August updates.  The download in the earlier email also work but, looking at the issues addressed, this is worth a separate post.   Adobe has released security updates for Adobe Flash Player, Adobe AIR, Adobe Reader, and Acrobat. The updates are rated as critical and an impressive number of CVE entries. CVE-2014-0538, CVE-2014-0540, CVE-2014-0541, CVE-2014-0542, CVE-2014-0543, CVE-2014-0544, CVE-2014-0545, CVE-2014-0546. Summary: update now. http://helpx.adobe.com/security/products/flash-player/apsb14-18.html http://helpx.adobe.com/security/products/reader/apsb14-19.html  Cheers,Adrien de BeaupréIntru-shun.ca Inc.My SANS Teaching Schedule   All users are encouraged to install these updates.  These updates will be automatically applied at the next reboot for Cyber Tech Cafe MyIT clients.

Emergency Update to Adobe Flash Player affecting Windows, OSX and Linux Adobe has released an emergency update to patch a vulnerability in Adobe Flash Player that is affecting all previous versions for Windows, OSX and Linux.  On Windows and OSX, the [now] current version of Adobe Flash Player is 12.0.0.44 and for Linux, the [now] current version is 11.2.202.336.  Google Chrome users should ensure that they have the latest version of Google Chome and Internet Explorer 10 and 11 users should be certain that they are using the latest version of Adobe Flash Player for the browser.   US-CERT has confirmed that a successful exploitation of this vulnerability could allow an attacker full control of vulnerable systems.   Links: Adobe Security Bulletin US Cert CNet All current Cyber Tech Cafe MyIT Customers…

According to this blog entry from Adobe, there was an attack on the Adobe systems / network and as a result some customer data was compromised.  The article is relatively short and does a good job of detailing what information was compromised.  The short story though is that, if you are an Adobe customer, your information was likely compromised.  Adobe is  Below is a snippet from the article: Our investigation currently indicates that the attackers accessed Adobe customer IDs and encrypted passwords on our systems. We also believe the attackers removed from our systems certain information relating to 2.9 million Adobe customers, including customer names, encrypted credit or debit card numbers, expiration dates, and other information relating to customer orders. At this time, we do not believe the attackers removed decrypted…