Posts tagged "Security Bulletin"

Multiple Vulnerabilities in Adobe Flash Player 8.0.24.0 and Earlier Versions

(Security bulletin) Critical vulnerabilities have been identified in Flash Player 8.0.24.0 and earlier versions that could allow an attacker who successfully exploits these vulnerabilities to take control of the affected system. A malicious SWF file must be loaded in Flash Player by the end user for an attacker to exploit these vulnerabilities. It is recommended that users update to the most current version of Flash Player available for their platform.

ColdFusion Sandbox Security vulnerability

(Security bulletin) Under certain circumstances, CFML templates outside a sandbox can call components (CFC) within a sandbox.

MPSB05-12 Sandbox Security and CFMAIL Vulnerability in ColdFusion MX 6.X

(Security bulletin) This bulletin addresses two (2) privately reported security issues with ColdFusion 6.X.

MPSB05-10 Security Patch for Insufficient Validation in Breeze Communication Server and Breeze Live Server

(Security Bulletin) The Breeze Communication Server and Breeze Live Server do not sufficiently validate some RTMP data. This can cause server instability or crashes for licensed customers.

MPSB05-09 Security Patch for Insufficient Validation in Flash Communication Server

(Security Bulletin) Flash Communication Server MX does not sufficiently validate some RTMP data. This can cause server instability or crashes.

MPSB05-08 Contribute Publishing Server Password Encryption

(Security Bulletin) Macromedia Contribute Publishing Server (CPS) 1.11 includes a security update which addresses an issue related to user password encryption in connection keys that use shared FTP login credentials.

Flash Player 7 Improper Memory Access Vulnerability

(Security Bulletin) A vulnerability in Macromedia Flash Player 7 has been identified that could allow the execution of arbitrary code.

MPSB05-05 – Security Patch available for JRun 4.0 token collision

(Security Bulletin) Under high load, JRun may generate two sessions with the same authentication token. This cannot be controlled by an attacker and it occurs very rarely, but it may cause two authenticated users to share information from a single user session.

Potential Security Risk with Macromedia eLicensing Client Activation Code

(Security Bulletin): Windows versions of the Macromedia installers and eLicensing client install a service with permissions that allow any member of the “Users” group to modify the service settings. This may allow local users to obtain the permissions …

Potential Security Risk with Macromedia eLicensing Client Activation Code

(Security Bulletin): Windows versions of the Macromedia installers and eLicensing client install a service with permissions that allow any member of the “Users” group to modify the service settings. This may allow local users to obtain the permissions …