Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 1 Vote(s) - 3 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Adobe patches the same critical Reader flaw twice in one week
#1
[Image: adobe-1920-x-1080_v3bvjo-1.png]




            Adobe has had an interesting week; they have had to patch the same flaw twice in the same week. This is due to a vulnerability in Reader, a hole that they thought they patched earlier this month. The flaw was first discovered in January, by security researcher Alex Infurh. He found that a malicious PDF flaw was being used to trigger a SMB call-back revealing an NTLMv2 hash. 

     The hole was patched, but a day after the hole was filled up, the same researcher found that the same patch could be bypassed. On the 21st of this month, Adobe had to go and fix the same problem. 


     It just goes to show you that even when a wall is put up to shore up a hole, there is still a chance that the same patch can be bypassed, one way or another, 


     Original article can be found here.


      That was the news folks, have a good week, and stay safe out there. 




      ---Mad-Architect
01001001 00100000 01000001 01001101 00100000 01011010 01001111 01000100 01001001 01000001 01000011
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Adobe fixes flaws in Adobe InDesign,Framemaker, Experience ManagerSecurity Affairs News 0 140 09-09-2020, 05:31 AM
Last Post: News
Big Grin News Researchers Warn of High-Severity Dell PowerEdge Server Flaw Mr.Kurd 0 243 07-29-2020, 11:42 AM
Last Post: Mr.Kurd
Smile News Critical Vulnerability In Bisq Crypto Exchange Exploited For Some Users Mr.Kurd 0 347 04-10-2020, 02:46 PM
Last Post: Mr.Kurd
Sad News Critical RCE Bug in WordPress Plugin Let Hackers Gain Admin Access on 200,000 Website Mr.Kurd 0 314 04-01-2020, 11:19 AM
Last Post: Mr.Kurd
Question News Critical Remote Code Execution Bug in Linux Based OpenWrt OS Affects Millions of Netw Mr.Kurd 0 372 03-25-2020, 08:11 AM
Last Post: Mr.Kurd
Shocked News Unpatched Wormable Windows SMBv3 RCE Zero-day Flaw Leaked in Microsoft Security Updat Mr.Kurd 0 424 03-12-2020, 09:39 AM
Last Post: Mr.Kurd
Exclamation News NordVPN Patched a Flaw In Their Payments Platform That Exposed Users’ Details Mr.Kurd 0 390 03-09-2020, 05:34 PM
Last Post: Mr.Kurd
Wink News Google patches Chrome zero-day under active attacks Mr.Kurd 0 378 02-25-2020, 06:09 PM
Last Post: Mr.Kurd
Star News Dell SupportAssist flaw exposes computers to hack Mr.Kurd 0 387 02-11-2020, 03:58 PM
Last Post: Mr.Kurd
Heart News Critical RCE & Spoofing Vulnerabilities in Microsoft Azure Cloud Let Hackers Compromi Mr.Kurd 0 465 01-31-2020, 07:32 AM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)