About what problems in the framework of the February "Tuesday of updates" Microsoft corrected, we already talked about, now it came through Adobe.
This month, Adobe has eliminated a total of in its products 42 vulnerabilitiesincluding bugs in Framemaker, Acrobat and Reader, Flash Player, Digital Editions and Experience Manager.
The largest number of problems, 21, was fixed in the Windows version of Framemaker. Among them are: vulnerabilities related to critical buffer overflows, heap overflows, out-of-bounds records, as well as problems of violation of the integrity of information in memory, which can lead to the execution of arbitrary code in the context of the current user. Although the vulnerabilities have been classified as critical, Adobe assures that they are unlikely to be used in attacks in the near future.
Second place in the number of vulnerabilities, 17, is occupied by Windows and macOS versions of Acrobat and Reader. Many critical problems were also found here, including problems with corruption of the integrity of information in memory that can be used to execute arbitrary code, and vulnerabilities that allow elevation of privileges that allow an attacker to write arbitrary files to the system. Among other, less serious bugs were memory leaks and potential disclosure issues.
They also resolved: two issues in Digital Editions, including a critical bug that allowed command injections; a number of problems such as type confusion in Flash Player that could lead to the execution of arbitrary code; and DoS vulnerability in Experience Manager.