Adobe rushes to fix Flash flaws
Friday, November 7, 2008
Adobe has issued a new patch in an attempt to fix up to six flaws in its Flash Player program.
Rated critical, the new patch addresses vulnerabilities which could lead to a potential network security and data security breaches.
ZDNet notes that one such flaw concerns the way that Flash handles the jar: protocol in Mozilla browsers.
The website claims that left unresolved, this particular vulnerability could lead to a data security compromise and information disclosure.
At the same time, Adobe also released a patch to resolve issues which are a particular problem for its ColdFusion servers operating in a shared environment.
The flaw could allow a hacker to bypass sandbox user rights limits and potentially launch an escalation attack to breach network security.
Earlier this week, the group also issued a series of patches to address flaws in its Acrobat Reader program.
IT ProPortal notes that security researchers first identified the problems in May.
Related News:
Failed terrorist attack prompts questions about the next time - 12.31.2009
Cyber security experts said, in the wake of the failed bombing of a Northwest Airlines flight bound for Detroit, that the next terrorist attack could come from cyberspace.
Social media app developer sued over privacy breach - 12.31.2009
RockYou, a firm that creates applications for use on social media networks, was sued this week by an Indiana man who alleges that the developer failed to adequately safeguard his personally identifiable information.
'Iranian Cyber Army' uses DNS hacking to bring down Twitter - 12.18.2009
Popular microblogging service Twitter went down for several hours on Thursday as hackers claiming to represent the "Iranian Cyber Army" disrupted the site's DNS records and replaced the front page graphics with angry anti-American sentiments presented in broken English.
ChoicePoint hit by $275K fine for 2008 data security breach - 10.21.2009
ChoicePoint, a large data broker subsidiary of Reed Elsevier, has been ordered to pay a $275,000 fine by the U.S. Federal Trade Commission, over a data breach in 2008 that exposed the private data of more than 13,000 customers.
TJX settles another class action over data breach - 9.4.2009
TJX Companies yesterday announced a settlement agreement that will result in the dismissal of a class action initiated by financial institutions as a result of the data breach of TJX's network security during 2005 and 2006 that exposed approximately 40 million credit card numbers.
|
