| Recommendations for October 2014 | |||||
|---|---|---|---|---|---|
| INDENTIFIER | Vendor/Product | Product Version Affected | Date Released by Vendor | Vulnerability Info | Vendor Severity / Our Recommendation |
| APSB14-22 | Adobe Flash Player | Win/Mac 15.0.0.167 and earlier 13.0.0.244 and earlier 13.x Linux 11.2.202.406 and earlier |
10/14/2014 | Arbitrary Code Execution | Critical: Priority 1/ Upgrade within 72 hours |
| APSB14-22 | Adobe Air |
Win 15.0.0.249 and earlier |
10/14/2014 | Arbitrary Code Execution |
Critical: Priority 3/ Upgrade at admins discretion |
| APSB14-23 | Adobe ColdFusion | ColdFusion 11, 10, 9.0.2, 9.0.1 and 9.0 |
10/14/2014 | Security Bypass, Cross Site Scripting | Important: Priority 2/ Upgrade within 30 days |
| 12.0.1 | Apple iTunes | Before 12.0.1 | 10/16/2014 | Arbitrary Code Execution, Denial of Service | Recommended: Upgrade after testing |
| 7.7.6 | Apple QuickTime | Before 7.7.6 | 10/22/2014 | Arbitrary Code Execution, Denial of Service | Recommended: Upgrade after testing |
| 38.0.2125.104 | Google Chrome | Win/Mac/Linux Before 38.0.2125.104 | 10/14/2014 | Denial of Service, Information Disclosure, Security Bypass | Upgrade at admin’s discretion |
| 33/ESR 31.2 | Mozilla Firefox | Before 33/ESR 31.2 | 10/14/2014 | Arbitrary Code Execution, Information Disclosure, Security Bypass, Denial of Service | Recommended: Upgrade after testing |
| 31.2 | Mozilla Thunderbird | Before 31.2 | 10/14/2014 | Arbitrary Code Execution, Information Disclosure, Security Bypass, Denial of Service | Recommended: Upgrade after testing |
| October CPU | Java | Java SE 6u81, Java SE 7u67, Java SE 8u20, Java SE Embedded 7u60 | 10/47/2014 | Arbitrary Code Execution | Recommended: Upgrade after testing |