Alert GCSA-10110 - Vulnerabiilta' in Adobe Shockwave Player
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-10110
Data : 25 agosto 2010
Titolo : Vulnerabiilta' in Adobe Shockwave Player
******************************************************************
:: Descrizione del problema:
Sono state riscontrate vulnerabilita' multiple in Adobe Shockwave Player, che
potrebbero essere sfruttate per compromettere un sistema utente.
Per una descrizione completa delle vulnerabilita' fare riferimento alla
segnalazione ufficiale di Adobe.
Le vulnerabilita' sono riportate nelle versioni del software, sia per Windows
che per Macintosh, precedenti alla 11.5.8.612
:: Software interessati:
Adobe Shockwave Player 11.x
:: Impatto:
Esecuzione di codice arbitrario
Compromissione del sistema
:: Soluzione:
Aggiornare alla versione 11.5.8.612 o successive:
:: Riferimenti:
Adobe:
http://www.adobe.com/support/security/bulletins/apsb10-20.html
Secunia:
http://secunia.com/advisories/41065/
Mitre CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2863
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2864
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2865
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2866
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2867
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2868
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2869
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2870
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2871
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2872
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2873
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2874
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2875
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2876
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2877
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2878
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2879
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2880
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2881
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2882
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTHUMZvOB+SpikaiRAQKHbgP/eCKTDviwlfc8O50BDRqSzZvvQTaAY5FR
C/yofI/oXJYHpBtd/729NjQhAaXOirfIFP7RGNJVOiLuaxfdOWV1QNIGAbDGpL7L
3FNUEs/nsKkxEMNOUjH3dPEysCdbgZFcoqGe5Q1it7VojXAiuK8Rh2uwOwGFeggD
x5SQWSFOAD0=
=SAF6
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-10110
Data : 25 agosto 2010
Titolo : Vulnerabiilta' in Adobe Shockwave Player
******************************************************************
:: Descrizione del problema:
Sono state riscontrate vulnerabilita' multiple in Adobe Shockwave Player, che
potrebbero essere sfruttate per compromettere un sistema utente.
Per una descrizione completa delle vulnerabilita' fare riferimento alla
segnalazione ufficiale di Adobe.
Le vulnerabilita' sono riportate nelle versioni del software, sia per Windows
che per Macintosh, precedenti alla 11.5.8.612
:: Software interessati:
Adobe Shockwave Player 11.x
:: Impatto:
Esecuzione di codice arbitrario
Compromissione del sistema
:: Soluzione:
Aggiornare alla versione 11.5.8.612 o successive:
:: Riferimenti:
Adobe:
http://www.adobe.com/support/security/bulletins/apsb10-20.html
Secunia:
http://secunia.com/advisories/41065/
Mitre CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2863
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2864
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2865
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2866
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2867
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2868
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2869
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2870
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2871
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2872
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2873
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2874
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2875
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2876
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2877
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2878
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2879
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2880
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2881
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2882
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTHUMZvOB+SpikaiRAQKHbgP/eCKTDviwlfc8O50BDRqSzZvvQTaAY5FR
C/yofI/oXJYHpBtd/729NjQhAaXOirfIFP7RGNJVOiLuaxfdOWV1QNIGAbDGpL7L
3FNUEs/nsKkxEMNOUjH3dPEysCdbgZFcoqGe5Q1it7VojXAiuK8Rh2uwOwGFeggD
x5SQWSFOAD0=
=SAF6
-----END PGP SIGNATURE-----