Month: September 2024
As Democrats celebrated Vice President Kamala Harris’ strong debate performance on Tuesday, the GOP were quick to criticize the ABC News moderators as ‘biased.’ While the moderators did focus all their fact-checking efforts on the former President, Trump campaign allies still concede that President Trump was unfocused and missed key opportunities to both attack the Biden-Harris administration’s record and appeal to swing state voters. Former South Carolina Congressman and host of Fox News’ Sunday Night in America, Trey Gowdy, reacts to this week’s presidential debate, breaking down the need for the Trump campaign to prepare the former President for “3-on-1” debates with media bias, opportunities missed to call out Harris’ record, and what the Trump campaign must focus on next to win. Alabama Senator Katie Britt (R) is the youngest Republican woman ever elected to the Senate. She was just 40 years old when she won in 2022. Britt joins the podcast to discuss her book, “God Calls Us to Do Hard Things: Lessons of Faith, Family, and Leading from the Heart,” why she entered politics, and why she believes her party will win back control of Congress and the White House this fall. Plus, commentary from FOX News contributor Joe Concha. Photo Credit: AP
Learn more about your ad choices. Visit megaphone.fm/adchoices
Learn more about your ad choices. Visit megaphone.fm/adchoices
Categories
4AM ET 09/12/2024 Newscast
Categories
VOA Newscasts
Categories
3AM ET 09/12/2024 Newscast
Leaving a job can be just as messy as leaving a romantic partner. New York University professor of psychology Tessa West joins host J.R. Whalen to discuss how relationship science can help you avoid common mistakes and guide you through the stages of falling out of love with your career. Sign up for the WSJ’s free Markets A.M. newsletter. Learn more about your ad choices. Visit megaphone.fm/adchoices
Categories
NPR News: 09-12-2024 3AM EDT
Categories
VOA Newscasts
Adobe addressed tens of vulnerabilities, including critical issues that could allow attackers to execute arbitrary code on Windows and macOS.
Adobe Patch Tuesday security updates addressed multiple vulnerabilities in its products, including critical flaws that could allow attackers to execute arbitrary code on Windows and macOS systems.
The most severe vulnerabilities are two critical memory corruption flaws in Acrobat and PDF Reader, tracked as CVE-2024-41869 (CVSS score of 7.8) and CVE-2024-45112 (CVSS score of 8.6).
The vulnerability CVE-2024-41869 is a Use After Free issue while the flaw CVE-2024-45112 is a Type Confusion’ bug. An attacker can exploit these vulnerabilities for arbitrary code execution.
| Vulnerability Category | Vulnerability Impact | Severity | CVSS base score | CVSS vector | CVE Number |
| Use After Free (CWE-416) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-41869 |
| Access of Resource Using Incompatible Type (‘Type Confusion’) (CWE-843) | Arbitrary code execution | Critical | 8.6 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H | CVE-2024-45112 |
CVE-2024-45112 was reported by an anonymous researcher and the researcher Haifei Li of EXPMON and Check Point Research reported the flaw CVE-2024-41869.
The company also fixed the following critical flaws in Photoshop
| Vulnerability Category | Vulnerability Impact | Severity | CVSS base score | CVSS vector | CVE Number |
|---|---|---|---|---|---|
| Heap-based Buffer Overflow (CWE-122) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-43756 |
| Out-of-bounds Write (CWE-787) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-43760 |
| Out-of-bounds Write (CWE-787) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-45108 |
| Out-of-bounds Write (CWE-787) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-45109 |
| Out-of-bounds Read (CWE-125) | Memory leak | Important | 5.5 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N | CVE-2024-45110 |
and in the Illustrator software
| Vulnerability Category | Vulnerability Impact | Severity | CVSS base score | CVSS vector | CVE Numbers |
|---|---|---|---|---|---|
| Integer Underflow (Wrap or Wraparound) (CWE-191) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-41857 |
| Integer Overflow or Wraparound (CWE-190) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-34121 |
| Improper Input Validation (CWE-20) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-41856 |
| Out-of-bounds Write (CWE-787) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-45114 |
| Use After Free (CWE-416) | Arbitrary code execution | Critical | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | CVE-2024-43758 |
| Out-of-bounds Read (CWE-125) | Memory leak | Important | 5.5 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N | CVE-2024-45111 |
| NULL Pointer Dereference (CWE-476) | Application denial-of-service | Moderate | 3.3 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L | CVE-2024-43759 |
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Adobe)
Categories
