Adobe says it will deliver a fix for a newly discovered flaw that is being used in drive-by download attacks, but the patch won't be ready until at least next Monday.
Showing results 1 to 20 of 397
Four days after Google's Project Zero team disclosed an unpatched security bug in Windows, and drew rebuke from Redmond, another bug has exceeded Google's deadline and been made public.
The Redmond giant isn't exactly chipper after Google disclosed a Windows bug just two days before Microsoft planned to issue a fix.
Google's Project Zero bug hunters have published details of a critical vulnerability in Adobe Reader for Windows that was patched in September.
On Tuesday, about the time that Microsoft issues its Patch Tuesday Windows updates, Adobe will release new versions of Reader and Acrobat.
A flaw in Adobe Acrobat and Reader for Windows is being exploited in the wild. Critical vulnerabilities affect all versions of Flash Player.
At least one critical vulnerability affecting supported versions of both Adobe Reader and Acrobat on both Mac and Windows will be patched next week.
[UPDATED] A vulnerability in Flash Player for Windows, Mac and Linux is being exploited in the wild. An update is available from Adobe (and Google and Microsoft for their browsers).
Microsoft has not said whether WordPad, the free word processor included with Windows, is vulnerable to the zero day flaw announced yesterday in Microsoft Word.
Three vulnerabilities, including one being exploited in the wild, are fixed in another emergency update of the Flash Player from Adobe.
Memory corruption vulnerabilities in the Player could lead to complete system compromise. The new version is 220.127.116.11.
Microsoft issued a security alert and is investigating a report issued by FireEye Labs warning of an MS Windows/Adobe Reader local privilege escalation zero-day in the wild.
A critical vulnerability in Acrobat and Reader 11.x for Windows has been patched. Adobe calls it a critical regression error.
All versions of Windows and Internet Explorer are vulnerable to one or more critical flaw fixed today. A component of Exchange written by Oracle is also patched, and there are non-security updates as well.
Despite rolling out five security updates, Microsoft missed out a patch for a zero-day flaw in Windows. And it just so happened it was discovered by its main rival in the business space.
After releasing details about a Windows flaw without a fix from Microsoft, a researcher has now published an exploit for it.
Hackers used Adobe software to stage a data breach that left up to 160,000 Social Security numbers exposed.
Security researchers have discovered a previously unreported zero-day attack that targets U.S. government nuclear weapons scientists and researchers. Microsoft has warned Internet Explorer 8 users to upgrade to a later version of the browser, as the potentially affects at most one-quarter of all IE users.
A Java flaw warning announced by Homeland Security this weekend concerns mostly Windows users, as usual. However, some Macs may be vulnerable. Apple and Oracle moved to address the flaw.