Adobe Releases Second Critical Zero-Day Flash Update in a Short Month
Adobe professes that today's update addresses vulnerabilities that could potentially allow an attacker to take control of the affected system, and that the company knows that it already exists in the wild.
February 20, 2014
True to form, Adobe has released a critical update to its software farm, this time for Flash Player, out of the blue and at an extremely bad time (is there a good time to drop everything and fix software security bugs?). As Microsoft is attempting to temporarily fix another issue brought on by Adobe software in its IE9 and IE10 Internet browsers, Adobe has posted notice of the second such critical update this month. The first one was released on February 4th.
Adobe professes that today's update addresses vulnerabilities that could potentially allow an attacker to take control of the affected system, and that the company knows that it already exists in the wild.
The following software versions are vulnerable:
Adobe Flash Player 12.0.0.44 and earlier versions for Windows and Macintosh
Adobe Flash Player 11.2.202.336 and earlier versions for Linux
Adobe AIR 4.0.0.1390 and earlier versions for Android
Adobe AIR 3.9.0.1390 SDK and earlier versions
Adobe AIR 3.9.0.1390 SDK & Compiler and earlier versions
Read the full security bulletin here: Security updates available for Adobe Flash Player
And, get patched!
About the Author
You May Also Like