Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Diaries by Keyword Diaries by Keyword

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

ADVISORY FLASH PLAYER

2010-06-05Guy BruneauSecurity Advisory for Flash Player, Adobe Reader and Acrobat

ADVISORY

2018-10-17/a>Russ McReeVMSA-2018-0026 VMware ESXi, Workstation & Fusion updates address out-of-bounds read vulnerability https://www.vmware.com/security/advisories/VMSA-2018-0026.html
2017-12-20/a>Richard PorterVMWare Security Advisory: VMSA-2017-0021: https://www.vmware.com/security/advisories/VMSA-2017-0021.html
2016-08-31/a>Deborah HaleCisco Security Advisories Issued
2016-01-10/a>Jim ClausingVMware security update
2015-12-19/a>Russell EubanksVMWare Security Advisory
2014-10-01/a>Russ McReeVMware security advisory: VMSA-2014-0010 http://www.vmware.com/security/advisories/VMSA-2014-0010.html
2014-09-12/a>Chris MohanVMware NSX and vCNS product updates address a critical information disclosure vulnerability http://www.vmware.com/security/advisories/VMSA-2014-0009.html
2014-04-11/a>Rob VandenBrinkVMware Security Advisories / Patches released for 2 issues (NOT Heartbleed) - http://www.vmware.com/security/advisories/VMSA-2014-0003.html and http://www.vmware.com/security/advisories/VMSA-2014-0002.html
2014-01-24/a>Chris MohanSecurity Update for OS X for CVE-2014-1252 http://support.apple.com/kb/HT6117
2013-12-23/a>Scott FendleyVMWare ESX/ESXi Security Advisory
2013-12-04/a>Adrien de BeaupreVMware Security Advisory VMSA-2013-0014
2013-09-17/a>John BambenekMicrosoft Releases Out-of-Band Advisory for all Versions of Internet Explorer
2013-08-29/a>Russ McReeSuspect Sendori software
2013-08-13/a>Swa FrantzenMicrosoft security advisories: RDP and MD5 deprecation in Microsoft root certificates
2013-08-02/a>Chris MohanVMware Security Advisory VMSA-2013-0009 - http://www.vmware.com/security/advisories/VMSA-2013-0009.html
2013-06-11/a>Swa FrantzenOther Microsoft Black Tuesday News
2013-05-31/a>Chris MohanVMware releases new and updated security advisories
2013-05-14/a>Swa FrantzenMicrosoft Security Advisory 2846338
2013-02-22/a>Chris MohanVMware releases new and updated security advisories
2013-02-12/a>Adam SwangerMicrosoft February 2013 Black Tuesday Update - Overview
2013-02-01/a>Jim ClausingVMware vSphere security updates for the authentication service and third party libraries (see http://www.vmware.com/security/advisories/VMSA-2013-0001.html)
2013-01-15/a>Russ McReeCisco introducing Cisco Security Notices 16 JAN 2013
2013-01-09/a>Rob VandenBrinkSecurity Update - Cisco Prime LMS (cisco-sa-20130109-lms - remote execution as root vulnerability) - advisory at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-lms
2013-01-09/a>Rob VandenBrinkSecurity Update - Cisco 7900 Phones - cisco-sa-20130109-uipphone privilege escallation issue - advisory at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-uipphone
2012-12-11/a>John BambenekMicrosoft December 2012 Black Tuesday Update - Overview
2012-11-13/a>Jim ClausingMicrosoft November 2012 Black Tuesday Update - Overview
2012-10-05/a>Richard PorterVMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/VMSA-2012-0014.html
2012-09-27/a>Kevin ShorttCisco IOS Security Advisory Bundle - http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep12.html
2012-09-20/a>Russ McReeApple and Cisco Security Advisories 19 SEP 2012
2012-08-31/a>Johannes UllrichVMware Updates
2012-07-13/a>Russ McReeVMWare Security Advisory 12 JUL 2012
2012-07-10/a>Swa FrantzenMicrosoft revoking trust in Microsoft certificates - SA 2728973
2012-07-10/a>Swa FrantzenMicrosoft fix-it to disable gadgets - SA 2719662
2012-06-21/a>Russ McReeCisco Security Advisories 20 JUN 2012
2012-06-14/a>Johannes UllrichVMWare Security Advisories
2012-03-12/a>Guy BruneauOpenSSL Security Update
2012-02-29/a>Russ McReeCisco Security Advisories - 29FEB2011
2012-01-31/a>Russ McReeFirefox 10 and VMWare advisories and updates
2011-11-18/a>Kevin ListonRecent VMWare security advisories
2011-10-05/a>Jim ClausingVMware Advisory - UDF file system handling
2011-06-01/a>Adrien de BeaupreCisco Security Advisory: Multiple Vulnerabilities in Cisco Unified IP Phones 7900 Series - http://www.cisco.com/warp/public/707/cisco-sa-20110601-phone.shtml
2011-06-01/a>Adrien de BeaupreCisco Security Advisory: Default Credentials Vulnerability in Cisco Network Registrar - http://www.cisco.com/warp/public/707/cisco-sa-20110601-cnr.shtml
2011-06-01/a>Adrien de BeaupreCisco Security Advisory: Default Credentials for root Account on the Cisco Media Experience Engine 5600 - http://www.cisco.com/warp/public/707/cisco-sa-20110601-mxe.shtml
2011-06-01/a>Adrien de BeaupreCisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client - http://www.cisco.com/warp/public/707/cisco-sa-20110601-ac.shtml
2011-03-30/a>Adrien de BeaupreTwo Cisco advisories: cisco-sa-20110330-nac and cisco-sa-20110330-acs
2011-02-10/a>Chris MohanLinksys WAP610N has Unauthenticated Root Console issue
2011-02-08/a>Chris MohanVMWare Security Advisory
2010-09-18/a>Rick WannerMicrosoft Security Advisory for ASP.NET
2010-07-21/a>Adrien de BeaupreUpdate on .LNK vulnerability
2010-06-17/a>Deborah HaleFYI - Another bogus site
2010-06-15/a>Manuel Humberto Santander PelaezApple releases advisory for Mac OS X - Multiple vulnerabilities discovered
2010-06-05/a>Guy BruneauSecurity Advisory for Flash Player, Adobe Reader and Acrobat
2010-05-30/a>Kevin ListonVMware ESX/ESXi Updates
2010-03-10/a>Rob VandenBrinkMicrosoft Security Advisory 981374 - Remote Code Execution Vulnerability for IE6 and IE7
2010-02-17/a>Rob VandenBrinkCisco ASA5500 Security Updates - cisco-sa-20100217-asa
2010-02-17/a>Rob VandenBrinkCisco Security Agent Security Updates: cisco-sa-20100217-csa
2010-02-03/a>Johannes UllrichInformation Disclosure Vulnerability in Internet Explorer
2010-01-21/a>Johannes UllrichNew Microsoft Advisory: Vulnerability in Windows Kernel Privilege Escalation (CVE-2010-0232)
2009-11-14/a>Adrien de BeaupreMicrosoft advisory for Windows 7 / Windows Server 2008 R2 Remote SMB DoS Exploit released
2009-06-12/a>Adrien de BeaupreGoogle updates for Chrome
2009-05-28/a>Stephen HallMicrosoft DirectShow vulnerability
2008-09-24/a>Deborah HaleFlurry of Security Advisories from CISCO
2008-06-01/a>Mari NicholsUpdates to VMware resolve critical security issues

FLASH

2018-11-27/a>Xavier MertensMore obfuscated shell scripts: Fake MacOS Flash update
2018-02-01/a>Johannes UllrichAdobe Flash 0-Day Used Against South Korean Targets
2016-10-26/a>Johannes UllrichCritical Flash Player Update APSB16-36
2016-06-17/a>Johannes UllrichCritical Adobe Flash Update. Patch Now
2016-05-12/a>Xavier MertensAdobe Released Updates to Fix Critical Vulnerability
2016-04-06/a>Bojan ZdrnjaYAFP (Yet Another Flash Patch)
2015-12-29/a>Daniel WesemannNew Years Resolutions
2015-12-28/a>Rick WannerAdobe Flash and Adobe AIR Updates - https://helpx.adobe.com/security/products/flash-player/apsb16-01.html
2015-10-16/a>Alex StanfordAdobe Flash Update
2015-07-27/a>Daniel WesemannAngler's best friends
2015-07-14/a>Johannes UllrichAdobe Updates Flash Player, Shockwave and PDF Reader
2015-07-12/a>Rick WannerAnother Adobe Flash Zero Day http://www.kb.cert.org/vuls/id/338736
2015-02-02/a>Stephen HallNew Adobe Flash Vulnerability - CVE-2015-0313
2015-01-26/a>Russ McReeAdobe updates Security Advisory for Adobe Flash Player, Infocon returns to green
2015-01-23/a>Johannes UllrichFlash 0-Day: Deciphering CVEs and Understanding Patches
2015-01-23/a>Adrien de BeaupreInfocon change to yellow for Adobe Flash issues
2014-11-11/a>Johannes UllrichAdobe Flash Update
2014-08-12/a>Adrien de BeaupreAdobe updates for 2014/08
2014-07-11/a>Rob VandenBrinkApple pushes OS X update to block out of date Flash versions - http://support.apple.com/kb/HT5655
2014-04-28/a>Russ McReeAdobe Security Bulletin: Security updates available for Adobe Flash Player http://adobe.ly/QVjO72
2014-04-08/a>Rick WannerSecurity Updates available for Adobe Flash Player - http://helpx.adobe.com/security/products/flash-player/apsb14-09.html
2014-03-11/a>Johannes UllrichAdobe Updates: Flash Player
2013-12-10/a>Rob VandenBrinkAdobe Updates today as well.
2013-05-08/a>Johannes Ullrich"De Flashing" the ISC Web Site and Flash XSS issues
2013-03-02/a>Scott FendleyApple Blocks Older Insecure Versions of Flash Player
2013-02-27/a>Adam SwangerAdobe Flash Player Security Update - http://www.adobe.com/support/security/bulletins/apsb13-08.html
2013-02-20/a>Johannes UllrichUpdate Palooza
2013-02-12/a>Swa FrantzenAdobe Feb 2013 Black Tuesday patches
2013-02-07/a>John BambenekAdobe Releases Patches for 0-day Vulnerability in Flash Player for Windows and Mac, Upgrade now: http://www.adobe.com/support/security/bulletins/apsb13-04.html
2013-01-09/a>Rob VandenBrinkSecurity Updates for Adobe Flash - http://www.adobe.com/support/security/bulletins/apsb13-01.html
2012-11-08/a>Daniel WesemannAdobe Patches
2012-10-24/a>Rob VandenBrinkTime to run Windows Update - - Microsoft Updates KB2755801 for Windows RT / IE10 / Flash Player - http://technet.microsoft.com/en-us/security/advisory/2755801
2012-10-09/a>Johannes UllrichAdobe Flash Player update http://www.adobe.com/support/security/bulletins/apsb12-22.html
2012-09-21/a>Guy BruneauUpdate for Vulnerabilities in Adobe Flash Player in Internet Explorer 10 (2755801)
2012-09-20/a>Russ McReeFlash Player update but no announcement, check your version http://www.adobe.com/software/flash/about/
2012-08-21/a>Adrien de BeaupreYYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-03/a>Guy BruneauFlash Player 11.3.300.270 for Windows released to address a crash - http://forums.adobe.com/message/4594596#4594596
2012-05-25/a>Guy BruneauTechnical Analysis of Flash Player CVE-2012-0779
2012-05-04/a>Guy BruneauAdobe Security Flash Update
2012-04-14/a>Rick WannerFlashback Trojan Removal Tool Released
2012-04-12/a>Guy BruneauApple Java Updates for Mac OS X
2012-03-28/a>Kevin ShorttAdobe Flash Player APSB12-07 - 28 March 2012
2012-03-05/a>Johannes UllrichFlashback Malware now with Twitter C&C
2012-03-05/a>Johannes UllrichAdobe Flash Player Security Update
2012-02-24/a>Guy BruneauFlashback Trojan in the Wild
2012-02-16/a>Johannes UllrichAdobe Flash Player Update
2011-12-08/a>Adrien de BeaupreNewest Adobe Flash 11.1.102.55 and Previous 0 Day Exploit
2011-11-11/a>Rick WannerAdobe Flash update to 11.1.102.55
2011-10-21/a>Johannes UllrichNew Flash Click Jacking Exploit
2011-09-21/a>Swa FrantzenEmergency patch expected for Flash Player
2011-09-21/a>Guy BruneauAdobe Release Flash Player 10.3.183.10 available at http://get.adobe.com/flashplayer/
2011-08-26/a>Daniel WesemannAdobe Flash stability update to 10.3.183.7. See http://forums.adobe.com/message/3883150
2011-08-05/a>Johannes UllrichMicrosoft Patch Tuesday Advance Notification: 13 Bulletins coming http://www.microsoft.com/technet/security/Bulletin/MS11-aug.mspx
2011-06-30/a>Guy BruneauAdobe Release Flash Player 10.3.181.34 available at http://get.adobe.com/flashplayer/
2011-06-06/a>Johannes UllrichAdobe releases Flash Player patch on a Sunday to combat latest 0day http://www.adobe.com/support/security/bulletins/apsb11-13.html
2011-04-14/a>Johannes UllrichUpdate to Adobe Flash 0-day: Patch will be out soon
2011-04-11/a>Johannes UllrichYet another Adobe Flash/Reader/Acrobat 0 day
2011-03-14/a>Bojan ZdrnjaAdobe Flash 0-day being used in targeted attacks
2011-03-02/a>Chris MohanUpdates: Firefox 3.6.14/3.5.17, Thunderbird 3.1.8, Adobe Flash v10.2.152.32 & WireShark 1.4.4
2011-02-09/a>Mark HofmanAdobe Patches (shockwave, Flash, Reader & Coldfusion)
2011-01-06/a>Johannes UllrichFlash Local-with-filesystem Sandbox Bypass
2010-11-01/a>Manuel Humberto Santander PelaezCVE-2010-3654 exploit in the wild
2010-09-14/a>Adrien de BeaupreAdobe Flash v10.1.82.76 and earlier vulnerability in-the-wild
2010-08-18/a>Guy BruneauAdobe out-of-cycle Updates
2010-06-16/a>Kevin ShorttAdobe Flash Player 10.1 - Security Update Available
2010-06-05/a>Guy BruneauSecurity Advisory for Flash Player, Adobe Reader and Acrobat
2010-02-16/a>Robert DanfordAdobe Updates: http://www.adobe.com/support/security/bulletins/apsb10-07.html http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-02-12/a>G. N. WhiteAdobe Flash Player 10.0.45.2 and AIR 1.5.3.9130 released to correct vulnerability CVE-2010-0186 Details: http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-01-21/a>Chris CarboniSecurity Update Available for Shockwave Player
2010-01-12/a>Johannes UllrichMicrosoft Advices XP Users to Uninstall Flash Player 6
2010-01-06/a>Guy BruneauSecure USB Flaw Exposed
2009-12-09/a>Swa FrantzenAdobe flash player and air patched
2009-11-13/a>Adrien de BeaupreFlash Origin Policy Attack
2009-09-04/a>Adrien de BeaupreSo, you updated your Flash did you?
2009-08-25/a>Bojan ZdrnjaFlash attack vectors (and worms)
2009-07-22/a>Bojan ZdrnjaYA0D (Yet Another 0-Day) in Adobe Flash player
2009-05-01/a>Adrien de BeaupreAdobe Flash Media Server privilege escalation security bulletin
2009-02-25/a>Andre LudwigAdobe flash player patch
2008-12-05/a>Daniel WesemannBeen updatin' your Flash player lately?
2008-11-22/a>G. N. WhitePicture Printing Kiosks & Flash Memory Devices
2008-10-15/a>Mari NicholsAdobe Flash 10 Released
2008-05-28/a>Jim ClausingFollowup to Flash/swf stories
2008-05-27/a>Adrien de BeaupreAdobe flash player vuln
2008-04-09/a>Raul SilesCritical vulnerabilities in Adobe Flash Player
2006-11-14/a>Jim ClausingMS06-069: Adobe Flash Player
2006-11-14/a>Swa FrantzenAdobe Flash update available
2006-09-12/a>Swa FrantzenAdobe Flash player upgrade time
2006-09-06/a>Johannes UllrichUpdated Packet Attack flash animation

PLAYER

2016-10-26/a>Johannes UllrichCritical Flash Player Update APSB16-36
2015-01-23/a>Adrien de BeaupreInfocon change to yellow for Adobe Flash issues
2014-04-28/a>Russ McReeAdobe Security Bulletin: Security updates available for Adobe Flash Player http://adobe.ly/QVjO72
2013-03-02/a>Scott FendleyApple Blocks Older Insecure Versions of Flash Player
2012-11-08/a>Daniel WesemannAdobe Patches
2012-10-24/a>Rob VandenBrinkTime to run Windows Update - - Microsoft Updates KB2755801 for Windows RT / IE10 / Flash Player - http://technet.microsoft.com/en-us/security/advisory/2755801
2012-10-09/a>Johannes UllrichAdobe Flash Player update http://www.adobe.com/support/security/bulletins/apsb12-22.html
2012-09-20/a>Russ McReeFlash Player update but no announcement, check your version http://www.adobe.com/software/flash/about/
2012-08-03/a>Guy BruneauFlash Player 11.3.300.270 for Windows released to address a crash - http://forums.adobe.com/message/4594596#4594596
2012-03-28/a>Kevin ShorttAdobe Flash Player APSB12-07 - 28 March 2012
2012-03-05/a>Johannes UllrichAdobe Flash Player Security Update
2012-02-16/a>Johannes UllrichAdobe Flash Player Update
2010-11-01/a>Manuel Humberto Santander PelaezCVE-2010-3654 exploit in the wild
2010-10-30/a>Guy BruneauSecurity Update for Shockwave Player
2010-08-25/a>Pedro BuenoAdobe released security update for Shockwave player that fix several CVEs: APSB1020
2010-06-16/a>Kevin ShorttAdobe Flash Player 10.1 - Security Update Available
2010-06-05/a>Guy BruneauSecurity Advisory for Flash Player, Adobe Reader and Acrobat
2010-02-12/a>G. N. WhiteAdobe Flash Player 10.0.45.2 and AIR 1.5.3.9130 released to correct vulnerability CVE-2010-0186 Details: http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-01-12/a>Johannes UllrichMicrosoft Advices XP Users to Uninstall Flash Player 6
2009-01-21/a>Raul SilesTraffic increase for port UDP/8247
2008-05-27/a>Adrien de BeaupreAdobe flash player vuln
2006-12-12/a>Robert DanfordMS06-078: 2 Windows Media Format Vulnerabilities (CVE-2006-4702, CVE-2006-6134)