onsdag 15 juli 2015

Skydd mot nya sårbarheter i Adobe Flash Player, Internet Explorer, Windows Kernel Mode Driver, och Microsoft Office

Zscaler har proaktivt utvecklat skydd för attacker mot nya sårbarheter i Adobe Flash, Internet Explorer, Windows Kernel Mode Driver, Internet Explorer och Microsoft Office. Det avancerade skyddslagret används för att blockera zero-day-hot som utnyttjar nyupptäckta sårbarheter och inkluderas i Zscaler Business Suit och Zscaler Enterprise Suit.

WeClouds webbsäkerhetslösning från Zscaler analyserar allt innehåll i den data som hämtas från webben och bedömer det genom flera olika analyser, jämförelser och beteendeanalyser. Skanningen av http/https sker i realtid och skyddar användare och system oavsett var de kopplat upp sig genom att styra trafiken via någon av skannings-noderna i det globala säkerhetsnätverket.



APSB 15-16Security updates available for Adobe Reader and Acrobat
Severity: Critical

Affected Software
  • Adobe Flash Player Desktop Runtime 18.0.0.194 and earlier versions for Windows and Macintosh
  • Adobe Flash Player Extended Support Release 13.0.0.296 and earlier  versions for Windows and Macintosh
  • Adobe Flash Player for Google Chrome 18.0.0.194 and earlier versions for Windows, Macintosh and Linux
  • Adobe Flash Player 11.2.202.468 and earlier versions for Linux
  • AIR Desktop Runtime 18.0.0.144 and earlier versions for Windows and Macintosh
  • AIR SDK 18.0.0.144 and earlier versions for Windows, Macintosh, Android and iOS

CVE-2015-5119 - Use-after-free in the ByteArray assignation operator
CVE-2015-3128 - Use after free vulnerability in Flash when a text field that was added to a movie clip is deleted by an implementation of valueOf() or toString() in a custom object.
CVE-2015-3127 - Use after free vulnerability in Flash when a SharedObject is used as part of the Array
CVE-2015-3119 - Type Confusion vulnerability in NetConnection with __proto__
CVE-2015-3118 - Use after free vulnerability when setting TextField.filters
CVE-2014-0578 - Same origin policy bypass that can lead to cross-site information disclosures
CVE-2015-3121 - The data member of the SharedObject has Type Confusion vulnerability

Description: Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system.

MS15-070Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
Severity: Important

Affected Software
  • Microsoft Office 2007
  • Microsoft Office 2010
  • Microsoft Office 2013
  • Microsoft Office 2013 RT
  • Microsoft Excel for Mac 2011
  • Excel Services on Microsoft SharePoint Server 2007
  • Excel Services on Microsoft SharePoint Server 2010
  • Excel Services on Microsoft SharePoint Server 2013 
CVE-2015-2375 – Microsoft Excel ASLR Bypass Vulnerability
CVE-2015-2377 – Microsoft Office Memory Corruption Vulnerability
CVE-2015-2379 – Microsoft Office Memory Corruption Vulnerability
CVE-2015-2415 – Microsoft Office Memory Corruption Vulnerability

Description: Remote code execution vulnerabilities exist in Microsoft Office software when the Office software fails to properly handle objects in memory. Exploitation of these vulnerabilities requires that a user open a specially crafted file with an affected version of Microsoft Office software. In an email attack scenario an attacker could exploit the vulnerabilities by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) that contains a specially crafted file that is designed to exploit the vulnerabilities.

MS15-065Security Update for Internet Explorer
Severity: Critical

Affected Software
  • Internet Explorer 6-11
CVE-2015-1733 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-1738 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-1767 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2383 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2388 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2389 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2390 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2391 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2397 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2401 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2402 – Internet Explorer Information Disclosure Vulnerability
CVE-2015-2403 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2404 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2406 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2408 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2411 – Multiple Memory Corruption Vulnerabilities in Internet Explorer
CVE-2015-2405 – Internet Explorer Elevation of Privilege Vulnerability
CVE-2015-2419 – JScript9 Memory Corruption Vulnerability
CVE-2015-2421 – Internet Explorer ASLR Bypass
CVE-2015-2422 – Multiple Memory Corruption Vulnerabilities in Internet Explorer

Description: Remote code execution vulnerabilities exist when Internet Explorer improperly accesses objects in memory. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.

MS15-065Security Update for Internet Explorer
Severity: Critical

Affected Software
  • Internet Explorer 6-11
CVE-2015-2372 – VBScript Memory Corruption Vulnerability

Description: Memory corruption vulnerability occurs when the contents of memory locations are modified due to programming errors, this lead to the application crash.

MS15-077Vulnerability in ATM Font Driver Could Allow Elevation of Privilege
Severity: Important

Affected Software
  • Windows Server 2003
  • Windows Server 2008
  • Windows Server 2012
  • Windows 7
CVE-2015-2387 – ATMFD.DLL Memory Corruption Vulnerability

Description: An elevation of privilege vulnerability exists in Adobe Type Manager Font Driver (ATMFD) when it fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. 


www.wecloud.com

info@wecloud.com