Adobe has released security updates for Flash Player, Shockwave Player, and ColdFusion. The updates address vulnerabilities that may allow an attacker to execute arbitrary code, cause a denial-of-service condition, and cause an elevation of privilege condition.
The IT Security Office advises that owners of the software listed below update to the latest version of their installed software.
APSB13-17 Security updates available for Adobe Flash Player
APSB13-18 Security update available for Adobe Shockwave Player
APSB13-19 Security update: Hotfixes available for ColdFusion
Release date: July 9, 2013
Additional information about this vulnerability can be viewed at:
OIT has defined the following categories to describe the severity of security risks:
URGENT severity represents a broad threat to the entire campus community.
SEVERE severity included remote exploits and worms.
IMPORTANT severity includes virus and local exploits for commonly used services.