Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog - Adobe Flash player upgrade time InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Adobe Flash player upgrade time

Published: 2006-09-13
Last Updated: 2006-09-13 12:52:21 UTC
by Swa Frantzen (Version: 4)
0 comment(s)
Adobe released its APSB06-11 advisory on some patched versions of it's flash player today. These upgrades address multiple vulnerabilites in relation to input validation. They lead to arbitrary code execution.

Upgrading to the latest greatest version: 9.0.16.0 is highly recommended.

Apple Mac OS X users as well as Windows users are urged to upgrade. It's important as content vectors are something the dark sides likes to embrace.

CVE-2006-3014
CVE-2006-3311
CVE-2006-3587
CVE-2006-3588
CVE-2006-4640

A reader pointed us to the knowledge base article for more information on how to deploy it using e.g. a msi.

Another reader pointed us to Linux (and actually Solaris as well) users also need to upgrade their flash players. [They need to stay with the version 7 player, but have an upgrade waiting nevertheless].

--
Swa Frantzen -- Section 66
Keywords: adobe flash upgrade
0 comment(s)
Diary Archives