Monday, February 2, 2015

Update Flash fix security flaws! (The prequel)

Another Flash update is on the way.
Security Advisory for Adobe Flash Player 

Release date: February 2, 2015
Vulnerability identifier: APSA15-02 CVE number: CVE-2015-0313
Platform: All Platforms

Summary 
A critical vulnerability (CVE-2015-0313) exists in Adobe Flash Player 16.0.0.296 and earlier versions for Windows and Macintosh. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below. Adobe expects to release an update for Flash Player during the week of February 2. For more information on updating Flash Player please refer to this post.

Affected software versions 

Adobe Flash Player 16.0.0.296 and earlier versions for Windows and Macintosh Adobe Flash Player 13.0.0.264 and earlier 13.x versions
Adobe Flash Player 11.2.202.440 and earlier versions for Linux 
adobe.com

No comments:

Post a Comment