[IS&T Security-FYI] SFYI Newsletter, August 23, 2010
Monique Yeaton
myeaton at MIT.EDU
Mon Aug 23 11:59:15 EDT 2010
In this issue:
1. Adobe Updates Released
2. Unpatched Flaw Affects Windows Applications
3. Tip of the Week: Locking Your Workstation
------------------------------------
1. Adobe Updates Released
------------------------------------
On August 11 and 19 Adobe released two out-of-cycle security bulletins to patch vulnerabilities discussed at the Black Hat USA 2010 security conference in July as well as vulnerabilities in Flash Player and AIR.
Systems affected:
Adobe Reader 9.3.3 and earlier versions
Adobe Acrobat 9.3.3 and earlier versions
Adobe Flash Player 10.1.53.64 and earlier 10.x versions
Adobe Flash Player 9.0.277.0 and earlier 9.x versions
Adobe AIR 2.0.2.12610 and earlier versions
Adobe recommends users update their software with the patches either through the auto-update mechanism or by downloading them from the Adobe Download Center. The next quarterly update is scheduled for October.
Read the Security Bulletins:
<http://www.adobe.com/support/security/bulletins/apsb10-17.html>
<http://www.adobe.com/support/security/bulletins/apsb10-16.html>
Adobe Downloads:
<http://www.adobe.com/downloads/>
--------------------------------------------------------------
2. Unpatched Flaw Affects Windows Applications
--------------------------------------------------------------
A vulnerability in iTunes for Windows that Apple has patched remains unfixed in hundreds of other Windows applications. The remote code execution flaw was initially reported to affect about 40 applications, but that figure was later estimated to be significantly higher. The researcher says the attacks are trivial to launch. The problem lies in the way Windows downloads libraries for third-party applications. Each application will need to be fixed separately. Microsoft is looking into the issue.
Read the full article:
<http://www.computerworld.com/s/article/9180901/>
---------------------------------------------------------
3. Tip of the Week: Locking Your Workstation
---------------------------------------------------------
Windows users can lock their computer's screen easily by pressing the keys CTRL+ALT+DEL. Mac users can lock theirs by pressing the keys OPTION+COMMAND+EJECT. These measures are a good idea when you need to leave your workstation for longer than a minute and especially if it is located in an open and accessible space. Additional tip: if you do lock your computer's screen, make sure that you don't have the password written down anywhere near your workstation.
===========================================================================
Find current and older issues of Security FYI Newsletter at <http://kb.mit.edu/confluence/x/ehBB> or by visiting the Security FYI Blog at <http://securityfyi.wordpress.com/>
Monique Yeaton
IT Security Awareness Consultant
MIT Information Services & Technology (IS&T)
(617) 253-2715
http://ist.mit.edu/security
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/ist-security-fyi/attachments/20100823/391970d7/attachment.htm
More information about the ist-security-fyi
mailing list