MGASA-2018-0478 Updated flash-player-plugin packages fix security vulnerability

Use after free flaw enabling arbitrary code execution. CVE-2018-15982 Insecure Library Loading DLL hijacking flaw enabling privilege escalation. CVE-2018-15983...

Updated flash-player-plugin packages fix security vulnerability

Use after free flaw enabling arbitrary code execution. CVE-2018-15982 Insecure Library Loading DLL hijacking flaw enabling privilege escalation. CVE-2018-15983...

Adobe Flash Player Insecure Library Loading (DLL Hijacking) Vulnerability

Adobe Flash Player is a cross-platform, browser-based multimedia player product from Adobe. The product supports cross-screen and browser viewing of applications, content and videos. A security vulnerability exists in Adobe Flash Player. An attacker could exploit this vulnerability to elevate...

Adobe Flash Player Security Updates (APSB18-42) - Mac OS X

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...

Adobe Flash Player Security Updates (APSB18-42) - Linux

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...

Flash Player -- multiple vulnerabilities

Adobe reports: This update resolves a use-after-free vulnerability that could lead to arbitrary code execution CVE-2018-15982. This update resolves an insecure library loading vulnerability that could lead to privilege escalation CVE-2018-15983...

The installer of Windows10 Fall Creators Update Modify module for Security Measures tool may insecurely load Dynamic Link Libraries

Overview The installer of Windows10 Fall Creators Update Modify module for Security Measures tool provided by NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Tomohisa Hasegawa of Canon...

glibc: Incorrect handling of RPATH in elf/dl-load.c can be used to execute code loaded from arbitrary libraries

elf/dl-load.c in the GNU C Library aka glibc or libc6 2.19 through 2.26 mishandles RPATH and RUNPATH containing $ORIGIN for a privileged setuid or ATSECURE program, which allows local users to gain privileges via a Trojan horse library in the current working directory, related to the fillinrpath...

CVE-2018-15976

Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-15976

Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-15974

Adobe Framemaker versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-15974

Adobe Framemaker versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

Privilege escalation

Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-15976

Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-15974

Adobe Framemaker versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

APSB18-38 Security Updates Available for Adobe Technical Communications Suite

Adobe has released a security update for the Adobe Technical Communications Suite. This update resolves an insecure library loading vulnerability in the installer that could lead to privilege escalation...

APSB18-37 Security Updates Available for Adobe FrameMaker

Adobe has released a security update for Adobe Framemaker. This update resolves an insecure library loading vulnerability in the installer that could lead to privilege escalation...

CVE-2018-5003

Adobe Creative Cloud Desktop Application before 4.5.5.342 installer has an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-5003

Adobe Creative Cloud Desktop Application before 4.5.5.342 installer has an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2018-5003

Adobe Creative Cloud Desktop Application installer (Windows) prior to version 4.5.5.342 is affected by an insecure library loading (DLL hijacking) vulnerability (CVE-2018-5003). The root cause is DLL loading during installation, enabling privilege escalation if an attacker can place a malicious l...