Critical out-of-band update for Adobe Flash

Soldato
Joined
18 Aug 2007
Posts
9,923
Location
Liverpool
A responsibly disclosed critical vulnerability currently being exploited in the wild. Adobe have released a level 1 critical out of band update to address the flaw, which is cross platform. You only need to visit a website and view a malicious Flash file, and your system is open to remote code execution. The bug is unrelated to the critical IE flaw (which coincidentally also requires a Flash file to execute to enable the vulnerability in IE to be exploited).

Fire up the updaters if you haven't already. Flash auto update doesn't seem to check that regularly so it's definitely worth a manual refresh to be safe.

Source: Sophos Naked Security.
 
Back
Top Bottom