Yet Another Out-of-Band Adobe Security Update

Just last month we informed you of an out-of-band security update released by Adobe to fix critical vulnerabilities in Flash, Reader, and Acrobat. According to a recent Adobe security advisory, these applications once again suffer from a critical vulnerability that attackers are currently leveraging in the wild to execute malicious code on a user’s computer, potentially causing the computer to crash and enabling the attacker to gain full control over it.

Similar to last month’s vulnerability, the current one is exploited through a malicious Flash (.swf) file embedded in a Microsoft Word or Excel document delivered as an email attachment. More information on the security updates, timelines, and installation instructions can be found in the Adobe security bulletin “Security Advisory for Adobe Flash Player, Adobe Reader and Acrobat” and Security Bulletin APSB11-07.

To read more about security threats to Adobe applications, please refer to our previous blog post entitled “An Unpatched Adobe Application does for an Unsafe Network Make”.

3D Corporation can evaluate your network and provide assistance in ensuring patches for these applications are up-to-date. For more information on the services 3D provides to keep business networks secure, please call our office at (360) 671-4906, email us at info@3dcorp.us, or visit our website at http://www.3dcorp.us/.

References: “Another Month, Another Zero Day Flash Vulnerability”, watchguardsecuritycenter.com, “Security Advisory for Adobe Flash Player, Adobe Reader and Acrobat” , Security Bulletin APSB11-07.