September 13, SecurityWeek – (International) Adobe patches 29 vulnerabilities in Flash Player. Adobe released updates for Flash Player, Digital Editions, and Adobe Air SDK & Compiler resolving a total of 37 vulnerabilities, including integer overflow, use-after-free, among other memory corruption issues in Flash Player that can be exploited to leverage arbitrary code execution, as well as several memory corruption flaws and a use-after-free issue in Digital Editions 4.5.1 and earlier that can be exploited for arbitrary code execution, among other vulnerabilities. Source
September 13, SecurityWeek – (International) Microsoft patches browser vulnerability exploited in attacks. Microsoft released 13 security bulletins patching nearly 50 vulnerabilities plaguing Windows, Internet Explorer, Edge, Exchange, and Office, including an information disclosure flaw in Internet Explorer and Edge that can be exploited if an attacker convinces a victim to access a compromised Website, as well as a memory corruption issue that can be exploited for remote code execution if the victim accesses a compromised Website, among other vulnerabilities. Source
Above reprinted from the USDHS Daily Open Source Infrastructure Report