Adobe Acrobat, Reader and Flash Remote Exploit Vulnerability
GSA Reference Number: AD090722-01
Simply Put: Adobe Acrobat, Reader, and Flash have a remote code execution vulnerability currently being exploited on the Internet. Adobe does not have a patch available at this time. This vulnerability can be exploited by a malicious website to load arbitrary code or take control of a victim’s PC.
July Microsoft Patch Tuesday
Microsoft has announced 6 new patches for its monthly patch release cycle. These patches fix multiple Microsoft products, including Windows, Publisher, ISA Server, and Virtual PC. Three patches are rated Critical, and allow for remote code execution on vulnerable systems. The other three patches are rated Important, leading to elevation of privileges and a remote code exploit for Publisher. Gladiator recommends that users immediately apply all Critical patches to their systems.
Adobe Shockwave Player Vulnerability
GSA Reference Number: AD090625-01
Simply Put: Adobe Shockwave Player, which is used by browsers to play Shockwave media, has a remote code execution vulnerability in version 11.5.0.596 and earlier versions. Adobe has released a new player to address this vulnerability. Unfortunately, the current Shockwave Player must be uninstalled before upgrading. The uninstall requires a reboot.
Previous Articles
Gladiator Research and Security
This site is here to provide security related information and articles to better protect your financial institutions. We'll be posting advisories, blog entries and trends often so be sure to check back weekly.