Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

Adobe tagged in these posts

Adobe Reader and Acrobat Vulnerability (CVE-2011-2462)

Posted: 07 Dec 2011 07:39 PM | Chris Astacio | no comments


Yesterday, Adobe released a Security Advisory warning about a vulnerability in Adobe Reader and Acrobat. Adobe rated this vulnerability "critical," because it may allow an attacker to execute code remotely and take control of an affected system. Adobe is currently working on a fix and planning...

Read more > 

Filed under: ,

Microsoft patches 15 important vulnerabilities

Posted: 15 Sep 2011 02:45 PM | Tamas Rudnai | no comments


This month, Microsoft issued 5 security bulletins covering 15 vulnerabilities in Excel and Windows. These updates are considered important rather than critical, as by the time of the patch there was no malicious code exploiting the vulnerabilities in the wild. Adobe also released a security bulletin patching 13 vulnerabilities in Acrobat Reader. Websense® Security Labs highly recommends applying the updates in order to avoid cyber criminals who may use these security holes for their malicious activities.

...

Read more > 

Filed under: , , , ,

One more Adobe 0-day vulnerability using Office files

Posted: 11 Apr 2011 04:44 PM | Patrik Runald | no comments


Today Adobe announced a new 0-day vulnerability (CVE-2011-0611) in Adobe Flash Player and Adobe Acrobat that, similar to the previous 0-day from less than a month ago, was found embedded in a Microsoft Office file. The vulnerability allows an attacker to execute malicious code on a computer and has been...

Read more > 

Filed under: ,

Piggybacking on Adobe Acrobat and others

Posted: 18 Oct 2010 01:35 PM | Elad Sharf | no comments


Yesterday, Adobe unveiled the next version of its Acrobat software: Adobe Acrobat X. The version is set to hit the market within 30 days. Among other features, the version is going to include a very important security feature that will allow users to view documents safely within a sandbox environment...

Read more > 

Filed under: ,

Busy Four Months of Zero Days

Posted: 08 Oct 2010 11:00 AM | Elad Sharf | no comments


Reflecting on the past few months, it has been very busy with zero-day flaws affecting popular products. Last Tuesday, Adobe issued a patch for the SING table parsing exploit that affects Adobe Acrobat and Reader (CVE-2010-2883). This patch has effectively patched a sixth critical zero-day in just four...

Read more > 

Filed under: , ,