Adobe has released a set of updates for its products.
Adobe has updated its Flash Player [ APSB15-09 ] and Reader, Acrobat [ APSB15-10 ] products . Many vulnerabilities of the Remote Code Execution type were closed for them, which could be used by hackers to remotely execute code through a browser using malicious Flash (swf) content. 18 vulnerabilities were closed for Flash Player, and Acrobat 34 for Reader.
In the case of Reader and Acrobat, the situation is the same; a large number of RCE vulnerabilities ( HeapOv & Use-After-Free ) have been fixed, which can be used by attackers for remote code execution through a vulnerable version of products using a malicious PDF file. Several fixed vulnerabilities are related to security bypass methods when calling the Javascript API. Current product versions are shown in the table below.
')
We recommend updating your Flash Player. Browsers such as Internet Explorer 10 & 11 on Windows 8 / 8.1 and Google Chrome update their Flash Player versions automatically. For IE, see the updated Security Advisory 2755801 . Check your version of Flash Player for relevance here , the table below shows these versions for various browsers.
be secure.
In the case of Reader and Acrobat, the situation is the same; a large number of RCE vulnerabilities ( HeapOv & Use-After-Free ) have been fixed, which can be used by attackers for remote code execution through a vulnerable version of products using a malicious PDF file. Several fixed vulnerabilities are related to security bypass methods when calling the Javascript API. Current product versions are shown in the table below.
')
We recommend updating your Flash Player. Browsers such as Internet Explorer 10 & 11 on Windows 8 / 8.1 and Google Chrome update their Flash Player versions automatically. For IE, see the updated Security Advisory 2755801 . Check your version of Flash Player for relevance here , the table below shows these versions for various browsers.
be secure.
Source: https://habr.com/ru/post/257965/
All Articles