[SecurityRatty] tag: adobe

Why You Should Update Acrobat

Sun, 13 Jul 2008 04:37:44 +0000

Did you know that there's a secret plan by ISPs to kill off the Internet as we know it and replace it with a TV-like subscription? This scandalous news may not be in the mainstream media, but you can read it in a spam message reported on by the Symantec Security Response blog. The scam about the Internet TV conspiracy is more interesting than the average spam, but what's really interesting here is the attachment to the e-mail, which is a malicious Acrobat file detected by Symantec's products as Trojan.Pidief.A that exploits a famous Adobe Acrobat vulnerability announced in 2007. That vulnerability affected versions of Acrobat up to 8.1 on Windows XP (not Vista) and was only patched in the 8.x generation. 7.x users were left to the wolves. Acrobat is one of those core applications now that is critical for almost anyone and heavily attacked. If you're not going to be aggressive about applying updates, you really should look at using an alternative reader.

Apple OS update fixes Adobe corruption bug

Tue, 01 Jul 2008 09:00:00 +0000

Apple's update for its operating system, released late yesterday, fixes a data corruption problem that Photoshop users first reported after the company's last Mac OS X upgrade in May.

Researcher slams Adobe for 'epidemic' of JavaScript bugs

Tue, 24 Jun 2008 09:00:00 +0000

Adobe Systems has patched its free Reader and commercial Acrobat software to fix the latest in what one researcher called an "epidemic" of JavaScript vulnerabilities in the popular apps.

Adobe Reader/Acrobat JavaScript Method Handling Vuln

Tue, 24 Jun 2008 06:48:40 +0000

Well, Adobe is in the news again this morning with the release of another patch to address a remote access problem.

From Secunia:

Description:
A vulnerability has been reported in Adobe Reader/Acrobat, which potentially can be exploited by malicious people to compromise a user’s system.

The vulnerability is caused due to an error in the implementation of an unspecified JavaScript method and can be exploited to cause a crash or potentially execute arbitrary code via a specially crafted PDF file.

NOTE: The vulnerability is reportedly being exploited in the wild.

Note the ‘note’. This one is getting pwned as we speak.

Article Link

Windows XP SP3 includes vulnerable Flash Player

Mon, 02 Jun 2008 20:00:00 +0000

Microsoft's Windows XP Service Pack 3 (SP3) ships with an out-of-date version of Adobe's Flash Player that's vulnerable to recently-spotted attacks, according to Microsoft's support documentation.

Microsoft clarifies XP SP 3 Flash issue

Mon, 02 Jun 2008 20:00:00 +0000

Amid concerns that users of its Window XP Service Pack 3 operating system may be vulnerable to online attacks, Microsoft has finally broken its silence and explained which XP users need to upgrade their Adobe Flash Player software.

Windows XP SP3 includes vulnerable Flash Player

Mon, 02 Jun 2008 09:00:00 +0000

Microsoft's Windows XP Service Pack 3 (SP3) ships with an older version of Adobe's Flash Player that's vulnerable to recently-spotted attacks.

Apple Patches 40 Security Holes

Sat, 31 May 2008 10:38:33 +0000

Apple on Wednesday released an update to fix at least 40 different security holes in computers powered by its Mac OS X operating system and other software, including a just-in-time update to fix a dangerous vulnerability in the Adobe Flash Player that is being rather heavily exploited at the moment

Apple Patches for Apache, Flash and More

Fri, 30 May 2008 06:20:00 +0000

Yesterday I blogged a Windows flaw for Adobe Flash player. Today I came across another advisory about a patch Apple just put out earlier this week for Adobe Flash. The security update also covers other software too. From SecurityFocus:

The update patches eight vulnerabilities in the open-source Apache Web server and seven vulnerabilities in Adobe’s Flash Player plug-in. While the Apache flaws amount to, at most, cross-site scripting attacks, the Flash Player flaws could allow a malicious Flash file (SWF) to execute on the victim’s system, Apple stated in its security advisory.

The company also fixed five vulnerabilities in its ImageIO component that could allow denial-of-service attacks, information leakage, and in one case, possible code execution. The update also patches two flaws in the kernel that allow both local and remote users the ability to shutdown the system. A flaw in the way that the Mac’s Mail program handles the Internet’s next-generation addressing scheme, IP version 6, could allow remote code execution, Apple stated.

Flash Player + Windows = Threat of SQL Injection

Thu, 29 May 2008 11:59:09 +0000

Apparently Adobe Flash players that aren’t patched and up to date on Windows might be vulnerable to a new SQL injection–there are apparently 18 variants of the new exploit. SecureWorks has the details:

Attackers insert SCRIPT and IFRAME tags into the content of trusted, legitimate web sites via a known SQL injection attack. Those tags redirect the user to the attacker’s server which hosts the Flash exploit. Tens of thousands of web sites are vulnerable to the SQL injection attack, meaning the distribution potential is high.

The vulnerability is not “zero-day”; however, these are the first known public exploits targeting it. The SecureWorks Counter Threat Unit (CTU) has analyzed 18 variants of the exploit, and all attempt to leverage the integer overflow vulnerability originally discovered by Mark Dowd (CVE-2007-0071), which was patched by Adobe with release of version 9.0.124.0 of the Flash Player. While some have reported that the latest version is vulnerable, the CTU was unable to duplicate these results with samples taken from known exploit sites. The only confirmed vulnerable version is (pre-patch) 9.0.115.0.