Monday, April 28, 2014

Adobe Flash Player v13.0.0.206:
Critical Out Of Band Update,
Exploit In-The-Wild


Today Adobe released a critical, out of band update of Adobe Flash Player. The new version is There is an exploit of previous versions of Flash in-the-wild. Update immediately please.

Adobe's security bulletin can be found here:
These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system.
Adobe is aware of reports that an exploit for CVE-2014-0515 exists in the wild, and is being used to target Flash Player users on the Windows platform. Adobe recommends users update their product installations to the latest versions. . . .
These updates resolve a buffer overflow vulnerability that could result in arbitrary code execution (CVE-2014-0515).
At this point, the exploit is only on Windows OS computers. But it can easily be exploited on other platforms as well.

[Cross fingers that Adobe managed to compile this version correctly for ALL supported versions of OS X. (0_o)]


No comments:

Post a Comment