Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Login or Register to Hide ads and Accessing all features on the forum
Navigation:   Red Security General News News Adobe patches the same critical Reader flaw twice in one week

News 

Adobe patches the same critical Reader flaw twice in one week

0 Replies, 1571 Views

Mad-Architect

Away   02-25-2019, 01:30 PM
Senior Member
Registered
#1
[Image: adobe-1920-x-1080_v3bvjo-1.png]




            Adobe has had an interesting week; they have had to patch the same flaw twice in the same week. This is due to a vulnerability in Reader, a hole that they thought they patched earlier this month. The flaw was first discovered in January, by security researcher Alex Infurh. He found that a malicious PDF flaw was being used to trigger a SMB call-back revealing an NTLMv2 hash. 

     The hole was patched, but a day after the hole was filled up, the same researcher found that the same patch could be bypassed. On the 21st of this month, Adobe had to go and fix the same problem. 


     It just goes to show you that even when a wall is put up to shore up a hole, there is still a chance that the same patch can be bypassed, one way or another, 


     Original article can be found here.


      That was the news folks, have a good week, and stay safe out there. 




      ---Mad-Architect
01001001 00100000 01000001 01001101 00100000 01011010 01001111 01000100 01001001 01000001 01000011

Messages In This Thread
Adobe patches the same critical Reader flaw twice in one week - by Mad-Architect - 02-25-2019, 01:30 PM

Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Update Windows 10 to patch critical vulnerability in Microsoft store games News 0 1,798 11-06-2020, 04:22 AM
Last Post: News
Star News APT Actors Chaining Vulnerabilities Against SLTT, Critical Infrastructure, and Elect News 0 1,900 10-10-2020, 07:06 AM
Last Post: News
Star News Adobe fixes flaws in Adobe InDesign,Framemaker, Experience ManagerSecurity Affairs News 0 1,492 09-09-2020, 05:31 AM
Last Post: News
Big Grin News Researchers Warn of High-Severity Dell PowerEdge Server Flaw Mr.Kurd 0 1,659 07-29-2020, 11:42 AM
Last Post: Mr.Kurd
Smile News Critical Vulnerability In Bisq Crypto Exchange Exploited For Some Users Mr.Kurd 0 1,758 04-10-2020, 02:46 PM
Last Post: Mr.Kurd
Sad News Critical RCE Bug in WordPress Plugin Let Hackers Gain Admin Access on 200,000 Website Mr.Kurd 0 1,561 04-01-2020, 11:19 AM
Last Post: Mr.Kurd
Question News Critical Remote Code Execution Bug in Linux Based OpenWrt OS Affects Millions of Netw Mr.Kurd 0 1,705 03-25-2020, 08:11 AM
Last Post: Mr.Kurd
Shocked News Unpatched Wormable Windows SMBv3 RCE Zero-day Flaw Leaked in Microsoft Security Updat Mr.Kurd 0 1,703 03-12-2020, 09:39 AM
Last Post: Mr.Kurd
Exclamation News NordVPN Patched a Flaw In Their Payments Platform That Exposed Users’ Details Mr.Kurd 0 1,730 03-09-2020, 05:34 PM
Last Post: Mr.Kurd
Wink News Google patches Chrome zero-day under active attacks Mr.Kurd 0 1,609 02-25-2020, 06:09 PM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)