May 11, 2010

Adobe patches Shockwave Player, ColdFusion

Adobe on Tuesday issued an update to its Shockwave Player to close 18 "critical" vulnerabilities that could be exploited by attackers to run malware on victims' machines, according to a security bulletin. In addition, the company also pushed out an update for ColdFusion, a web application development platform, to rectify three "important" vulnerabilities which could result in cross-site scripting and information disclosure, a second bulletin said. None of the flaws are being actively exploited, an Adobe spokeswoman said. — DK
Related Articles
Related Topics

More in News

22M accounts exposed in Yahoo Japan breach

Users have been urged to change their passwords as a precaution.

Espionage hacking campaign "Operation Hangover" originates in India

Researchers at security firm Norman on Monday, building on earlier analysis from ESET, publicized a new attack infrastructure that is conducting national security and industrial espionage on targets across the world.

Operators again revive Pushdo botnet, use a popular tactic to stay hidden

Operators again revive Pushdo botnet, use a popular ...

Botnet operators are using a domain-generation algorithm to conceal their command-and-control center. And once they knew security researchers were on to their tricks, they got even slicker.