Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
thnWang WeiTHN:16D1A0509FDE824EA23D52FEEC5FBBBD
HistoryMar 11, 2014 - 5:45 a.m.

Adobe releases important Security Updates for Flash Player

2014-03-1105:45:00
Wang Wei
thehackernews.com
21

0.006 Low

EPSS

Percentile

75.9%

JSON

Adobe Flash Player Security updates Released

Adobe has released security updates to address important vulnerabilities in Adobe Flash Player 12.0.0.70 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.341 and earlier versions for Linux.

The new build intends to address following vulnerabilities in Adobe Flash Player:

  • CVE-2014-0503, reported by security researcher, ‘Masato Kinugawa’, that lets_ _attackers bypass the same-origin policy. Attackers can exploit this issue to access resources from another origin in the context of another domain. This can facilitate cross-site request-forgery attacks.
  • CVE-2014-0504, reported by ‘Jordan Milne’,****that could be used to read the contents of the clipboard(). The Clipboard can be used to store data, such as text and images, but flaw could allow hacker to stuff malware URLs onto your clipboard.

Adobe Security Bulletin APSB14-08 tagged the updates with Priority 2, ‘This update resolves vulnerabilities in a product that has historically been at elevated risk. There are currently no known exploits.

Adobe recommends users to update their software installations to Adobe Flash player 12.0.0.77 i.e. Available for download from Abobe Center.

Related

suse 3
mageia 1
nessus 8
redhat 1
openvas 8
altlinux 2
checkpoint_advisories 2
cve 2
prion 2
ubuntucve 2
cvelist 2
hackerone 1
gentoo 1
securityvulns 1
suse
suse
Security update for flash-player (important)
2014-03-18 00:04:14
flash-player to 11.2.202.346 (important)
2014-03-15 10:04:12
flash-player to 11.2.202.346 (important)
2014-03-14 21:04:13
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2014-03-12 20:22:25
nessus
nessus
RHEL 5 / 6 : flash-plugin (RHSA-2014:0289)
2014-03-13 00:00:00
MS KB2938527: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
2014-03-11 00:00:00
Flash Player for Mac <= 11.7.700.269 / 12.0.0.70 Multiple Vulnerabilities (APSB14-08) (Mac OS X)
2014-03-11 00:00:00
redhat
redhat
(RHSA-2014:0289) Moderate: flash-plugin security update
2014-03-12 00:00:00
openvas
openvas
Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 (Feb 2014) - Linux
2014-03-20 00:00:00
openSUSE: Security Advisory for flash-player (openSUSE-SU-2014:0379-1)
2014-03-17 00:00:00
Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 (Feb 2014) - Mac OS X
2014-03-20 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt27
2014-03-13 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt27
2014-03-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Information Disclosure (APSB14-08: CVE-2014-0504)
2014-03-13 00:00:00
Adobe Flash Player Same Origin Security Bypass (APSB14-08; CVE-2014-0503)
2014-03-13 00:00:00
cve
cve
CVE-2014-0504
2014-03-12 05:15:00
CVE-2014-0503
2014-03-12 05:15:00
prion
prion
Design/Logic Flaw
2014-03-12 05:15:00
Code injection
2014-03-12 05:15:00
ubuntucve
ubuntucve
CVE-2014-0504
2014-03-12 00:00:00
CVE-2014-0503
2014-03-12 00:00:00
cvelist
cvelist
CVE-2014-0504
2014-03-12 01:00:00
CVE-2014-0503
2014-03-12 01:00:00
hackerone
hackerone
Internet Bug Bounty: Same Origin Security Bypass Vulnerability
2014-03-11 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-05-03 00:00:00
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2014-05-04 00:00:00

0.006 Low

EPSS

Percentile

75.9%

JSON
Related for THN:16D1A0509FDE824EA23D52FEEC5FBBBD
suse3mageia1nessus8redhat1openvas8altlinux2checkpoint_advisories2cve2prion2ubuntucve2cvelist2hackerone1gentoo1securityvulns1