Jump to content
Login new information ×
Login new information

New Zero-Day Flash Player Vulnerability

anuseems

By anuseems
in Security & Privacy News

Recommended Posts

anuseems

anuseems

Posted
Posted

New Zero-Day Flash Player Vulnerability

http://www.zdnet.com/article/new-flash-zero-day-targets-windows-mac-users/

https://helpx.adobe.com/security/products/flash-player/apsa15-02.html

Flash Player 11, for "linux", isn't vulnerable

Security Advisory for Adobe Flash Player

Release date: February 2, 2015

Vulnerability identifier: APSA15-02

CVE number: CVE-2015-0313

Platform: All Platforms

Summary

A critical vulnerability (CVE-2015-0313) exists in Adobe Flash Player 16.0.0.296 and earlier versions for Windows and Macintosh. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below.

Adobe expects to release an update for Flash Player during the week of February 2. For more information on updating Flash Player please refer to this post.

Affected software versions

Adobe Flash Player 16.0.0.296 and earlier versions for Windows and Macintosh

Adobe Flash Player 13.0.0.264 and earlier 13.x versions

Link to comment
Share on other sites
  • Replies 4
  • Views 1.3k
  • Created
  • Last Reply
oliverjia

oliverjia

Posted
Posted

Adobe products, especially flash, are heavily exploited. Maybe they should throw in an overhaul and start over with a new flash player, with security bear in mind.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...