Author Topic: Running Adobe Flash? You need to read this today  (Read 707 times)

0 Members and 1 Guest are viewing this topic.

Offline thaiga

  • Korat forum specialist
  • *****
  • Posts: 16172
Running Adobe Flash? You need to read this today
« on: January 24, 2015, 02:44:54 PM »
Adobe has released a critical security patch for an Adobe Flash vulnerability that is being exploited by online criminals.

The vulnerability, known as CVE-2015-0310, can be used by hackers to “circumvent memory randomization mitigations” on versions of Windows.

Obviously it would be sensible to ensure that your version of Flash is updated as soon as possible.

If you’re using Google Chrome or Internet Explorer for Windows 8.x, then Flash should already have been updated to the latest version. If not, then it would be wise to follow the advice in Adobe’s security advisory to get the latest update as soon as possible.

Unfortunately, however, the story doesn’t end there. As Adobe has acknowledged that there is another zero-day vulnerability in Flash.

This other, as-yet-unpatched bug, was first reported by security researcher Kafeine via their Malware don’t need Coffee blog, when they noticed it being distributed through the malicious Angler Exploit Kit to recruit computers into botnets or to commit click fraud.

The critical zero-day vulnerability, known as CVE-2015-0311, exists in Adobe Flash Player version and earlier for Windows, Macintosh and Linux, and could allow a remote attacker to plant malware and take control of vulnerable computers.


The CVE has been fixed the 2015-01-22 with Flash  latest version

They are affecting Flash Player and below.

You can update at don't forget to uncheck the box - free McAfee Security Scan Plus
Anyone who goes to a psychiatrist should have his head examined.