Jump to content
Login new information ×
Login new information

Adobe warns: Flash Player malware hitting IE on Windows users

nsane.forums

By nsane.forums
in Security & Privacy News

Recommended Posts

nsane.forums

nsane.forums

Posted
Posted

Although the vulnerability affects Flash Player on all platforms, the malware attacks target Flash Player on Internet Explorer for Windows only.

Adobe has shipped an extremely urgent Flash Player patch to block in-the-wild malware attacks against Windows users.

Adobe described the attacks as “targeted” and warned that malicious Flash files are being delivered in e-mail messages.

Although the vulnerability affects Flash Player on all platforms, the malware attacks target Flash Player on Internet Explorer for Windows only.

According to Adobe’s advisory, the patch is available for Adobe Flash Player 11.2.202.233 and earlier versions for Windows, Macintosh and Linux, Adobe Flash Player 11.1.115.7 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.8 and earlier versions for Android 3.x and 2.x.

“These updates address an object confusion vulnerability (CVE-2012-0779) that could cause the application to crash and potentially allow an attacker to take control of the affected system,” Adobe said.

There are reports that the vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message. The exploit targets Flash Player on Internet Explorer for Windows only.

Windows users should treat this update with the utmost priority, Adobe said.

Posted Image View: Original Article

Link to comment
Share on other sites
  • Replies 2
  • Views 1.2k
  • Created
  • Last Reply
visualbuffs

visualbuffs

Posted
Posted

If you use Flash Player a lot on your Windows PC, specifically with your Internet Explorer web browser, you will definitely want to update to the latest version as soon as possible. Adobe has announced that it has releaseda new security update for Flash Player. While the update has been launched for Windows, Mac, Linux and Android versions, the main target is users of Windows and Internet Explorer.

Adobe states in its update bulletin:

These updates address an object confusion vulnerability (CVE-2012-0779) that could cause the application to crash and potentially allow an attacker to take control of the affected system. There are reports that the vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message. The exploit targets Flash Player on Internet Explorer for Windows only.

The update should be downloaded and installed if you have Flash Player 11.2.202.233 and earlier on Windows, Mac, and Linux ports, along with versions 11.1.115.7 or earlier on Android 4.x and versions 11.1.111.8 on Android 3.x and 2.x. Ars Technica also suggests that Mac users quickly update to the new version even though the exploit seems to be targeting Windows users at the moment.

Source

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...