Hello, welcome to the Wednesday, October 16th, 2019 edition of the Sandsenet Storms,

and its Stormcast, my name is Johannes Ulrich, and I'm recording from Jacksonville, Florida.

Well, looks like Adobe's patch Tuesday came a week late, and today we got four different Adobe bulletins to talk about.

Brought the most important of the updates affects Adobe Acrobat and Raider. A total of 68 vulnerabilities

are being fixed here and 45 of them are rated as critical and allow arbitrary code execution.

In addition to this, we got an update for the Adobe Download Manager.

This fixes DLL hijacking vulnerability.

Then we got an update for Adobe Experience Manager forms.

This also fixes a single vulnerability, a cross-site scripting issue.

And finally, we do have an update for the Adobe Experience Manager that fixes 12 different

vulnerabilities.

So really the Adobe Acrobat and reader vulnerabilities are probably

the big one here that you should address quickly. Now we've got nothing for Flash here and

Flash of course is the important one when it comes to synchronizing the Adobe Patch Tuesday

with Microsoft's Patch Tuesday because it is integrated into browsers.

So the reason that these updates are arriving not in sync with Microsoft's Patch Tuesday

is not an indication that these are super critical.

Actually, the priority as Adobe calls it, is pretty much two for all of these vulnerabilities,

meaning that there is no exploit expected to be imminent.

And users of Symantex endpoint protection client reported on various forums, a blue screen of death,

yesterday. Turns out that Symantec apparently did release a bad update on Monday. The affected version

is the intrusion prevention signature, 1014, R61.

...