Adobe releases patches for 24 vulnerabilities

0
20

Adobe released security updates for Adobe Flash Player, Adobe Digital Editions​ and Adobe Campaign for Windows, Macintosh, Linux and Chrome OS which fix 24 critical vulnerabilities critical vulnerabilities.

A critical security vulnerability can potentially allow a hacker to take control of the affected PC in order to download and execute almost any malware without your knowledge. While Adobe claims that none of the bugs have been exploited publicly, it is strongly recommended to update these Adobe products to the latest version to protect your system.

APSB17-04 security updates for Adobe Flash Player

CVE number: CVE-2017-2982, CVE-2017-2984, CVE-2017-2985, CVE-2017-2986, CVE-2017-2987, CVE-2017-2988,CVE-2017-2990, CVE-2017-2991, CVE-2017-2992, CVE-2017-2993, CVE-2017-2994, CVE-2017-2995, CVE-2017-2996

Vulnerability Details:

  • These updates resolve a type confusion vulnerability that could lead to code execution (CVE-2017-2995).
  • These updates resolve an integer overflow vulnerability that could lead to code execution (CVE-2017-2987).
  • These updates resolve use-after-free vulnerabilities that could lead to code execution (CVE-2017-2982, CVE-2017-2985, CVE-2017-2993, CVE-2017-2994).
  • These updates resolve heap buffer overflow vulnerabilities that could lead to code execution (CVE-2017- 2984, CVE-2017-2986, CVE-2017-2992).
  • These updates resolve memory corruption vulnerabilities that could lead to code execution (CVE-2017-2988, CVE-2017-2990, CVE-2017-2991, CVE-2017-2996).

APSB17-05 security updates for Adobe Digital Editions​

CVE number: CVE-2017-2973, CVE-2017-2974, CVE-2017-2975, CVE-2017-2976, CVE-2017-2977, CVE-2017-2978, CVE-2017-2979, CVE-2017-2980, CVE-2017-2981

Vulnerability Details:

  • This update resolves a vulnerability that could lead to a heap buffer overflow vulnerability that could lead to code execution (CVE-2017-2973).
  • This update resolve buffer overflow vulnerabilities that could lead to a memory leak (CVE-2017-2974, CVE-2017-2975, CVE-2017-2976, CVE-2017-2978, CVE-2017-2977, CVE-2017-2979, CVE-2017-2980, CVE-2017-2981).

APSB17-06 security updates for Adobe Campaign

CVE number: CVE-2017-2968, CVE-2017-2969

Vulnerability Details:

  • This update resolves a moderate security bypass affecting Adobe Campaign that could be exploited by an authenticated user with access to the client console. Successful exploitation could lead to read and write access to the system (CVE-2017-2968).
  • This update resolves a moderate input validation issue that could be used in cross-site scripting attacks (CVE-2017-2969).

LEAVE A REPLY

Please enter your comment!
Please enter your name here