Article submitted by: Administrator | Publish date: 29. November, 2011
Related topics: PaloAlto
 

PAN announced that its Threat Research Team was credited with identifying two critical vulnerabilities that affect multiple versions of Adobe Flash Player and Adobe Shockwave Player.

Palo Alto Networks Discovers Two Critical Vulnerabilities in Adobe Flash and Adobe Shockwave Players


SUNNYVALE, Calif., Nov. 11, 2011 – Palo Alto Networks™, the network security company, today announced that its Threat Research Team was credited with identifying two critical vulnerabilities – CVE-2011-2455 and CVE-2011-2125 – that affect multiple versions of Adobe Flash Player and Adobe Shockwave Player. Both vulnerabilities could lead to the potential execution of malicious code that allows attackers to take control of the system.

Vulnerable systems are susceptible to attacks via a buffer overflow vulnerability in the Dirapix.dll (CVE-2011-2125) or a memory corruption vulnerability (CVE-2011-2455). These vulnerabilities pertain to Adobe Shockwave Player 11.5.9.620 and earlier Windows and Macintosh versions, Adobe Flash Player 11.0.1.152 and earlier versions for Windows, Macintosh, Linux and Solaris as well as Adobe Flash Player 11.0.1.153 and earlier versions for Android.

These vulnerabilities are the most recent in a long line of discoveries made by Palo Alto Networks Threat Research Team. The team has been credited with discovering several vulnerabilities this year, which brings the team's cumulative total to 16 Adobe Flash vulnerabilities since 2007.

The Palo Alto Networks Threat Research Team

The Palo Alto Networks Threat Research Team is active in the research community, aggressively pursuing both new vulnerability research and alleviation of all types of threats. The team has leveraged its expertise to uncover a string of critical and important vulnerabilities and have then worked with Adobe to make sure users are protected.

Enterprises using legacy security technology increasingly lack visibility into and control of application traffic. Palo Alto Networks' next-generation firewalls are unique in the industry in their ability to see and control applications, users and content – not just ports, IP addresses and packets. Palo Alto Networks' next-generation firewalls enable enterprises to create granular, business-relevant security policies and safely control applications instead of the block-or-nothing approach offered by traditional port-blocking firewalls.



  

 

PaloAlto related articles

Other articles in News

© 2011 All rights reserved. ITIPO d.o.o. Ljubljana, Slovenija, Tehnoloski park 18, Building C1 / 3rd floor, phone: +386 1 475 95 00, e-mail: info@itipo.net.