Archiv pro měsíc: Září 2015 Adobe Flash Player And AIR APSB15-19 Remote Code Execution Vulnerabilities

Use-after-free vulnerability in Adobe Flash Player before on Windows and OS X and before on Linux, Adobe AIR before, Adobe AIR SDK before, and Adobe AIR SDK & Compiler before allows attackers to execute arbitrary code GarrettCom Magnum 6K And 10K Switches Hardcoded Credentials Information Disclosure Vulnerabilities

The firmware in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms for HTTPS sessions by leveraging knowledge of a private key from another installation. Adobe Reader And Acrobat JavaScript API Execution Restrictions Bypass Vulnerabilities

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass JavaScript API execution restrictions