The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Adobe has released security bulletin APSB11-17 to alert users of critical vulnerabilities in Adobe Shockwave Player 22.214.171.1240 and earlier versions on the Windows and Macintosh operating systems. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.
US-CERT encourages users and administrators to review the Adobe security bulletin APSB11-17 and apply any updates to help mitigate the risks.
Adobe has released security bulletin APSB11-18 to alert users of a critical vulnerability in Adobe Flash Player. The following versions are affected:
- 10.3.181.23 and earlier for Windows, Macintosh, Linux, and Solaris
- 10.3.185.23 and earlier for Android
Adobe indicates that it has received reports of active exploitation of this vulnerability. Adobe recommends that affected Windows, Macintosh, Linux, and Solaris users update to Adobe Flash Player 10.3.181.26. An Android update is expected to be released by June 18th.
US-CERT encourages users and administrators to review Adobe security bulletin APSB11-18 and apply any updates to help mitigate the risks.
Google released Chrome 12.0.742.100 for Windows, Mac, Linux, and Chrome Frame to address a critical vulnerability in the Flash player plug-in. This vulnerability could allow an attacker to take control of the affected system.
US-CERT encourages users and administrators to review the Google Chrome Releases blog entry and apply any necessary updates to help mitigate the risk.