Posts tagged "Security Bulletin"

Multiple Vulnerabilities in Adobe Flash Player 8.0.24.0 and Earlier Versions

Posted on September 12, 2006 by dmorris | Comments (0)

(Security bulletin) Critical vulnerabilities have been identified in Flash Player 8.0.24.0 and earlier versions that could allow an attacker who successfully exploits these vulnerabilities to take control of the affected system. A malicious SWF file must be loaded in Flash Player by the end user for an attacker to exploit these vulnerabilities. It is recommended that users update to the most current version of Flash Player available for their platform.

ColdFusion Sandbox Security vulnerability

Posted on September 12, 2006 by dmorris | Comments (0)

(Security bulletin) Under certain circumstances, CFML templates outside a sandbox can call components (CFC) within a sandbox.

MPSB05-12 Sandbox Security and CFMAIL Vulnerability in ColdFusion MX 6.X

Posted on December 16, 2005 by dmorris | Comments (0)

(Security bulletin) This bulletin addresses two (2) privately reported security issues with ColdFusion 6.X.

MPSB05-10 Security Patch for Insufficient Validation in Breeze Communication Server and Breeze Live Server

Posted on November 16, 2005 by dmorris | Comments (0)

(Security Bulletin) The Breeze Communication Server and Breeze Live Server do not sufficiently validate some RTMP data. This can cause server instability or crashes for licensed customers.

MPSB05-09 Security Patch for Insufficient Validation in Flash Communication Server

Posted on November 16, 2005 by dmorris | Comments (0)

(Security Bulletin) Flash Communication Server MX does not sufficiently validate some RTMP data. This can cause server instability or crashes.

MPSB05-08 Contribute Publishing Server Password Encryption

Posted on November 16, 2005 by dmorris | Comments (0)

(Security Bulletin) Macromedia Contribute Publishing Server (CPS) 1.11 includes a security update which addresses an issue related to user password encryption in connection keys that use shared FTP login credentials.

Flash Player 7 Improper Memory Access Vulnerability

Posted on November 7, 2005 by dmorris | Comments (0)

(Security Bulletin) A vulnerability in Macromedia Flash Player 7 has been identified that could allow the execution of arbitrary code.

MPSB05-05 – Security Patch available for JRun 4.0 token collision

Posted on July 15, 2005 by dmorris | Comments (0)

(Security Bulletin) Under high load, JRun may generate two sessions with the same authentication token. This cannot be controlled by an attacker and it occurs very rarely, but it may cause two authenticated users to share information from a single user session.

Potential Security Risk with Macromedia eLicensing Client Activation Code

Posted on July 11, 2005 by Christian Cantrell | Comments (0)

(Security Bulletin): Windows versions of the Macromedia installers and eLicensing client install a service with permissions that allow any member of the “Users” group to modify the service settings. This may allow local users to obtain the permissions …

Potential Security Risk with Macromedia eLicensing Client Activation Code

Posted on July 11, 2005 by Christian Cantrell | Comments (0)

(Security Bulletin): Windows versions of the Macromedia installers and eLicensing client install a service with permissions that allow any member of the “Users” group to modify the service settings. This may allow local users to obtain the permissions …