Tag Archives: memory corruption

Mozilla Firefox, Thunderbird, and SeaMonkey Bitmap Image Decoding Remote Memory Corruption Vulnerability

Mozilla Firefox, Thunderbird, and SeaMonkey contain a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system.

The vulnerability is due to a memory corruption error in the affected software while processing certain web pages. An unauthenticated, remote attacker could exploit this vulnerability by persuading a user to visit a malicious web page. When visited, the page could trigger a memory corruption error. The attacker could use the memory corruption error to execute arbitrary code on the system.

Mozilla has confirmed this vulnerability and released updated software.

 

Read more details here

Zero-Day vulnerability in Adobe Reader allows hacker to control system

Adobe released a Security advisory notifying about the new zero-day Vulnerability in the Adobe Reader. Hackers can exploit U3D memory corruption vulnerability (CVE-2011-2462) to crash the affected system and to potentially allow access to the system.

“We are in the process of finalizing a fix for the issue and expect to make available an update for Adobe Reader and Acrobat 9.x for Windows no later than the week of December 12, 2011. Continue reading Zero-Day vulnerability in Adobe Reader allows hacker to control system

Adobe patched Vulnerabilities in Acrobat and Reader

Adobe patched the Zero-day Vulnerability in Reader and Acrobat Applications.The initial problem was caused by a memory corruption when processing Universal 3D (U3D) files, which could allow attackers to potentially take control of an affected system. The patches released also address a newly revealed critical flaw (CVE-2011-4369) which can cause memory corruption when processing Product Representation Compact (PRC) 3D files. Continue reading Adobe patched Vulnerabilities in Acrobat and Reader