Sunday, July 12, 2015

Adobe Flash:
TWO MORE new Zero-Day Exploits!
Just Kill Flash NOW


A further two zero-day exploits of Adobe Flash are in-the-wild. This makes the most recent Flash update DANGEROUS to use. So don't.

Security Advisory for Adobe Flash Player
Critical vulnerabilities (CVE-2015-5122, CVE-2015-5123) have been identified in Adobe Flash Player and earlier versions for Windows, Macintosh and Linux. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system.  

1) Go to /Library/Internet Plug-ins/ and throw away:
- Flash Player.plugin
- flashplayer.xpt

2) Restart your web browsers.

Do It NOW.

Don't use Flash until Adobe has patched the thing, yet again, again.

We theoretically will see a patched version of Flash on Tuesday, July 14th.

Or, we could all just leave Flash in the Trash and never bother with the piece of crapcode again.

And yes folks. This easily means that, at the moment, Adobe Flash is the single most dangerous software we can run over the Internet on our Macs. Move aside Oracle Java.


No comments:

Post a Comment