Operating System:

[MAC]

Published:

16 July 2015

Protect yourself against future threats.

//Service

Sensitive Information Alert

Alert notification provided via email for sensitive material found online by our analyst team which specifically targets your organisation.

Read more
Resources > Security Bulletins > ESB-2015.1877 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2015.1877
                        OS X: Web plug-ins blocked
                               16 July 2015

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:          Adobe Flash
Publisher:        Apple
Operating System: OS X
Impact/Access:    Reduced Security -- Unknown/Unspecified
Resolution:       Patch/Upgrade

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

APPLE-SA-2015-07-15-1 OS X: Web plug-ins blocked

Due to security issues in older versions, Apple has updated the
web plug-in blocking mechanism to disable all versions of 
the Adobe Flash Player prior to 18.0.0.209 and 13.0.0.305.  

In addition, due to security issues in older versions,
Apple has updated the web plug-in blocking mechanism
to disable all versions of the Oracle Java web plug-in prior to 
1.8.51.16 on OS X Lion and later.

Information on blocked web plug-ins will be posted to:
http://support.apple.com/en-us/HT202681

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

- -----BEGIN PGP SIGNATURE-----
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=wkHX
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=KOVh
-----END PGP SIGNATURE-----