Jump to content
ritchie58

New Adobe Flash & Shockwave Player Security Vulnerability (Update Asap)

Recommended Posts

Adobe is recommending that users update their Flash Players immediately -- especially those who frequent Google Chrome and Internet Explorer. The company released an emergency security bulletin on Tuesday that addresses vulnerabilities in Flash, which could be exploited by hackers.

"This vulnerability could allow an attacker to remotely take control of the affected system," Adobe wrote in a blog post. "Adobe is aware of reports that an exploit for this vulnerability exists in the wild, and recommends users apply the updates referenced in the security bulletin."

Adobe assigned a Priority 1 rating to the vulnerabilities being exploited on Windows and Macintosh and advised users of both operating systems to install the update. That rating -- Adobe's highest threat level -- identifies "vulnerabilities being targeted, or which have a higher risk of being targeted, by exploit(s) in the wild." The bulletin also said that the Flash vulnerability faced by Linux users rated a Priority 3, which refers to "a product that has historically not been a target for attackers."

Adobe recommends users update to the latest versions:

  • Users of Adobe Flash Player 12.0.0.43 and earlier versions for Windows and Macintosh should update to Adobe Flash Player 12.0.0.44.
  • Users of Adobe Flash Player 11.2.202.335 and earlier versions for Linux should update to Adobe Flash Player 11.2.202.336.
  • Adobe Flash Player 12.0.0.41 installed with Google Chrome will automatically be updated to the latest Google Chrome version, which will include Adobe Flash Player 12.0.0.44 for Windows, Macintosh and Linux.
  • Adobe Flash Player 12.0.0.38 installed with Internet Explorer 10 will automatically be updated to the latest Internet Explorer 10 version, which will include Adobe Flash Player 12.0.0.44 for Windows 8.0.
  • Adobe Flash Player 12.0.0.38 installed with Internet Explorer 11 will automatically be updated to the latest Internet Explorer 11 version, which will include Adobe Flash Player 12.0.0.44 for Windows 8.1.

 

 

Article by: Dara Kerr - Freelance Journalist & CNET contributing editor

 

 

Here is the Adobe Security Bulletin CVE-2014-0497: http://helpx.adobe.c.../apsb14-04.html

This is a direct link to Adobe's Download Center to get the 12.0.0.44 update: http://get.adobe.com/flashplayer/

If you don't want the McAfee Security Scan Plus software included "don't forget to uncheck that box!"

 

Regards, Ritchie...

Edited by ritchie58
Added Direct Link & Security Bulletin
  • Like 2

Share this post


Link to post
Share on other sites

As of today Adobe announced that there are memory corruption vulnerabilities that could lead to code execution in their Shockwave Flash Player 12.0.7.148 as well. They are strongly recommending that all users update their Shockwave Flash Player as soon as possible.

 

Adobe Security Bulletin CVE-2014-0500, CVE-2014-0501: http://helpx.adobe.c.../apsb14-06.html

 

You can get the newsest 12.0.9.149 build here: http://get.adobe.com/shockwave/

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...