Adobe rushes to fix Flash flaws
Friday, November 7, 2008
Adobe has issued a new patch in an attempt to fix up to six flaws in its Flash Player program.
Rated critical, the new patch addresses vulnerabilities which could lead to a potential network security and data security breaches.
ZDNet notes that one such flaw concerns the way that Flash handles the jar: protocol in Mozilla browsers.
The website claims that left unresolved, this particular vulnerability could lead to a data security compromise and information disclosure.
At the same time, Adobe also released a patch to resolve issues which are a particular problem for its ColdFusion servers operating in a shared environment.
The flaw could allow a hacker to bypass sandbox user rights limits and potentially launch an escalation attack to breach network security.
Earlier this week, the group also issued a series of patches to address flaws in its Acrobat Reader program.
IT ProPortal notes that security researchers first identified the problems in May.
Related News:
ChoicePoint hit by $275K fine for 2008 data security breach - 10.21.2009
ChoicePoint, a large data broker subsidiary of Reed Elsevier, has been ordered to pay a $275,000 fine by the U.S. Federal Trade Commission, over a data breach in 2008 that exposed the private data of more than 13,000 customers.
TJX settles another class action over data breach - 9.4.2009
TJX Companies yesterday announced a settlement agreement that will result in the dismissal of a class action initiated by financial institutions as a result of the data breach of TJX's network security during 2005 and 2006 that exposed approximately 40 million credit card numbers.
Radisson data breach exposed credit card numbers - 8.20.2009
Between November 2008 and May 2009, hackers infiltrated the network security of computer systems at some Radisson hotels in the U.S. and Canada and accessed customer names and credit card numbers, the hotel chain disclosed Wednesday.
Feds indict TJX hacker for data theft in Heartland breach - 8.17.2009
Federal prosecutors on Monday indicted a Miami man in connection with the biggest credit card data breach on record - the theft of 130 million card numbers from Heartland Payment Systems - along with two other high-profile hacks.
Identity theft warnings issued to 13,000 after LexisNexis data breach - 7.16.2009
Two data breaches involving a subsidiary of LexisNexis have exposed the personal information of more than 13,000 consumers, leaving them vulnerable to identity theft and fraud.
|
