Pier-Luc Maltais

**Nome do software vulnerável e versões afetadas** Versões do MantisBT anteriores à 2.26.1 **Descrição** O MantisBT é um gerenciador de tarefas de código aberto. Um invasor não autenticado que conheça o endereço de e-mail e o nome de usuário de um usuário pode se apropriar da conta desse usuário ao corromper o link na mensagem de notificação de redefinição de senha. **Recomendações** Para versões anteriores à 2.26.1, atualize para a versão 2.26.1 para resolver o problema. Como solução alternativa temporária, defina `$g path` adequadamente no arquivo `config inc.php`.

**Name of the Vulnerable Software and Affected Versions** Adobe Reader and Adobe Reader Document Cloud (affected versions not specified) Adobe Acrobat and Adobe Acrobat Document Cloud (affected versions not specified) **Description** The issue is caused by a buffer overflow, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption). **Recommendations** For Adobe Reader and Adobe Reader Document Cloud, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Adobe Acrobat and Adobe Acrobat Document Cloud, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Adobe Reader and Adobe Reader Document Cloud (affected versions not specified) Adobe Acrobat and Adobe Acrobat Document Cloud (affected versions not specified) **Description** The issue is caused by a buffer overflow, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption). **Recommendations** For Adobe Reader and Adobe Reader Document Cloud, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Adobe Acrobat and Adobe Acrobat Document Cloud, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Adobe Reader versions (affected versions not specified) Adobe Acrobat versions (affected versions not specified) **Description** The issue is caused by a buffer overflow, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption). **Recommendations** For Adobe Reader, update to a version that contains a fix for this issue. For Adobe Acrobat, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Adobe Digital Editions versions prior to 4.5.1 **Description** The issue allows attackers to execute arbitrary code or cause a denial of service due to memory corruption via unspecified vectors. **Recommendations** For versions prior to 4.5.1, update to version 4.5.1 or later to resolve the issue.