Apple, Adobe Talk Security Updates

Thursday, November 10, 2011 @ 09:11 PM gHale


Apple and Adobe joined the Patch Tuesday club as they released security updates this week. The companies issued fixes for critical vulnerabilities including remote code execution flaws.

The Adobe update addresses vulnerabilities in the Shockwave Player for Windows and Mac OS X systems. The company advises users to install Shockwave Player version 11.6.3.633 to protect against attack.

RELATED STORIES
Third Party Vulnerability Hits Mitsubishi
Remote Procedure Call Vulnerability
SCADA/HMI ActiveX Hole Found
GE Works to Fix Vulnerabilities

Adobe classifies the update as “critical” warning as the flaw could allow an attacker to execute code on a targeted system.

Apple, on the other hand, fixes 17 vulnerabilities in Java for Mac OS X 10.6 and 10.7 systems, some of which could allow an attacker to execute code outside the secure Java sandbox.

The updates follow Microsoft’s November Patch Tuesday security release, which includes fixes for a critical vulnerability in the Windows 7 and Windows Vista TCP/IP component.

Vulnerabilities in third-party components such as Shockwave and Java have been a growing concern for businesses, as users can miss overlook patches.

Security companies said Java poses a particular risk, as the need for extensive testing by administrators can often leave computers exposed to vulnerabilities for extended periods.



Leave a Reply

You must be logged in to post a comment.