Alert GCSA-11036 - Vulnerabilita' in Adobe Flash Player
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11036
Data : 13 Maggio 2011
Titolo : Vulnerabilita' in Adobe Flash Player
******************************************************************
:: Descrizione del problema:
Sono state scoperte varie vulnerabilita' in Adobe Flash Player
che potrebbero essere sfruttate da remoto da un utente malevolo
per compromettere un sistema affetto ed accedere ad informazioni
sensibili.
:: Software interessato:
Adobe Flash Player 10.2.159.1 e versioni precedenti per Windows,
Macintosh, Linux and Solaris.
Adobe Flash Player 10.2.154.28 e versioni precedenti per Chrome.
Adobe Flash Player 10.2.157.51 e versioni precedenti per Android.
:: Impatto:
Accesso ad informazioni sensibili
Esecuzione di codice arbitrario
Compromissione del sistema
:: Soluzioni:
Aggiornare Adobe Flash Player alla versione 10.3.181.14 :
http://get.adobe.com/flashplayer/
Aggiornare Adobe Flash Player alla versione 10.3.185.21 per
Android :
market://details?id=com.adobe.flashplayer
Gli utenti di Chrome possono aggiornare il browser alla versione
11.0.696.68
http://googlechromereleases.blogspot.com/
:: Riferimenti:
Adobe:
http://www.adobe.com/support/security/bulletins/apsb11-12.html
SecurityFocus
http://www.securityfocus.com/bid/47815
http://www.securityfocus.com/bid/47814
http://www.securityfocus.com/bid/47813
http://www.securityfocus.com/bid/47812
http://www.securityfocus.com/bid/47810
http://www.securityfocus.com/bid/47808
http://www.securityfocus.com/bid/47811
http://www.securityfocus.com/bid/47809
http://www.securityfocus.com/bid/47807
http://www.securityfocus.com/bid/47806
VUPEN
http://www.vupen.com/english/advisories/2011/1225
Secunia
http://secunia.com/advisories/44590/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0589
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0618
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0619
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0620
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0621
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0622
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0623
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0624
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0625
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0626
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0627
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTc05KPOB+SpikaiRAQKP2AP+PwDl68ZVXBI7bMHuwke+fKJ7j3Esj5Ls
Wlygtdl1M4pDmWnguvcNTLh36+ho5t/t7A2mLlsXCiilaPGrZdaN6N8QIrU58seY
ajekb5CKRFRszlHTTdH7BF8o3B7olorbOsunv0wVX34Uk5E2BSZ4Rrjews/kqwiT
SlLC0I6GD6M=
=D7LM
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11036
Data : 13 Maggio 2011
Titolo : Vulnerabilita' in Adobe Flash Player
******************************************************************
:: Descrizione del problema:
Sono state scoperte varie vulnerabilita' in Adobe Flash Player
che potrebbero essere sfruttate da remoto da un utente malevolo
per compromettere un sistema affetto ed accedere ad informazioni
sensibili.
:: Software interessato:
Adobe Flash Player 10.2.159.1 e versioni precedenti per Windows,
Macintosh, Linux and Solaris.
Adobe Flash Player 10.2.154.28 e versioni precedenti per Chrome.
Adobe Flash Player 10.2.157.51 e versioni precedenti per Android.
:: Impatto:
Accesso ad informazioni sensibili
Esecuzione di codice arbitrario
Compromissione del sistema
:: Soluzioni:
Aggiornare Adobe Flash Player alla versione 10.3.181.14 :
http://get.adobe.com/flashplayer/
Aggiornare Adobe Flash Player alla versione 10.3.185.21 per
Android :
market://details?id=com.adobe.flashplayer
Gli utenti di Chrome possono aggiornare il browser alla versione
11.0.696.68
http://googlechromereleases.blogspot.com/
:: Riferimenti:
Adobe:
http://www.adobe.com/support/security/bulletins/apsb11-12.html
SecurityFocus
http://www.securityfocus.com/bid/47815
http://www.securityfocus.com/bid/47814
http://www.securityfocus.com/bid/47813
http://www.securityfocus.com/bid/47812
http://www.securityfocus.com/bid/47810
http://www.securityfocus.com/bid/47808
http://www.securityfocus.com/bid/47811
http://www.securityfocus.com/bid/47809
http://www.securityfocus.com/bid/47807
http://www.securityfocus.com/bid/47806
VUPEN
http://www.vupen.com/english/advisories/2011/1225
Secunia
http://secunia.com/advisories/44590/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0589
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0618
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0619
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0620
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0621
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0622
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0623
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0624
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0625
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0626
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0627
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTc05KPOB+SpikaiRAQKP2AP+PwDl68ZVXBI7bMHuwke+fKJ7j3Esj5Ls
Wlygtdl1M4pDmWnguvcNTLh36+ho5t/t7A2mLlsXCiilaPGrZdaN6N8QIrU58seY
ajekb5CKRFRszlHTTdH7BF8o3B7olorbOsunv0wVX34Uk5E2BSZ4Rrjews/kqwiT
SlLC0I6GD6M=
=D7LM
-----END PGP SIGNATURE-----