On Monday, Microsoft re-issued MS09-054, the update that patched four vulnerabilities in Internet Explorer (IE). According to Christopher Budd, a spokesman for the Microsoft Security Response Center (MSRC), the follow-up hotfix patches Web page display problems introduced by the update. Budd downplayed the severity of the problems, saying that the number of users affected was "limited.
On November 3, 2009, Sun will release the following security updates:
- JDK and JRE 6 Update 17
- JDK and JRE 5.0 Update 22
- SDK and JRE 1.4.2_24
- SDK and JRE 1.3.1_27
Critical vulnerabilities have been identified in Adobe Shockwave Player 184.108.40.2061 and earlier versions. The vulnerabilities could allow an attacker, who successfully exploits the vulnerabilities, to run malicious code on the affected system. Adobe has provided a solution for the reported vulnerabilities. It is recommended that users update their installations using the instructions provided below.
Adobe recommends Shockwave Player users install Shockwave Player version 220.127.116.112 available here: http://get.adobe.com/shockwave/.