3 matches found
December 2014 Adobe Flash, Reader, Acrobat, ColdFusion Patch
As expected, Adobe today patched a vulnerability in Adobe Reader disclosed last week by Google’s Project Zero. What was unexpected was a Flash Player update that includes a patch for a vulnerability being exploited in the wild, Adobe said. Adobe had announced last Thursday in its pre-notification...
CVE-2014-9150
Adobe Reader and Acrobat 11.x on Windows are affected by a TOCTOU race condition in MoveFileEx during sandboxed operations, allowing arbitrary file writes via an NTFS junction attack. The issue affects versions prior to 11.0.09 (and is related to CVE-2014-9150). The root cause is a race condition...
Adobe Acrobat < 10.1.12 / 11.0.09 Multiple Vulnerabilities (APSB14-20)
The version of Adobe Acrobat installed on the remote host is a version prior to 10.1.12 / 11.0.09. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows arbitrary code execution. CVE-2014-0560 - A heap-based buffer overflow exists that allows...