Summary: This vulnerability affects: Adobe Flash Player running on all platforms and Adobe Air How an attacker exploits it: By enticing users to visit a website containing malicious Flash content Impact: In the worst case, an attacker can execute code on the user's computer, potentially gaining control of it What to do: Download and install the latest version of Adobe … [Read more...]
Office Patches Mend SharePoint and OneNote
Severity: High Summary: These vulnerabilities affect: Microsoft Office related products like OneNote and SharePoint Server How an attacker exploits them: Varies. Typically by enticing users to open or interact with maliciously crafted Office documents Impact: Many. In the worst case, an attacker can gain complete control of your Windows computer What to do: Install the … [Read more...]
Office Updates Include Patches for SharePoint Vulnerabilities
Severity: High Summary: These vulnerabilities affect: Microsoft Office and related products like SharePoint Server How an attacker exploits them: Varies. Typically by enticing users to open or interact with maliciously crafted Office documents, or interacting with web resources Impact: Many. In the worst case, an attacker can gain complete control of your Windows … [Read more...]
UPDATE TO: Advanced Attackers Exploit IE 0day in the Wild
Severity: High Summary: This vulnerability affects: All versions of Internet Explorer (IE) How an attacker exploits it: By enticing a user to visit web site containing malicious content Impact: An attacker can execute code with your privileges, potentially gaining complete control of your computer What to do: Install Microsoft's emergency IE patch immediately, or let … [Read more...]
Advanced Attackers Exploit IE & Flash 0days in the Wild
Over the weekend, Microsoft released a critical security advisory warning customers of a serious new zero day vulnerability in Internet Explorer (IE), which attackers are exploiting in the wild. Around the same time, Kaspersky also noted an attack campaign leveraging a new Adobe Flash zero day flaw, which Adobe patched today. I'll discuss both issues below, starting with the IE … [Read more...]