Flash zero-day patched

Powered by SC Magazine
 

Flaw exploited for phishing XXS attacks.

Adobe has rushed out a patch to fix vulnerabilities in Flash Player including one actively exploited.

The Flash update (10.3.183.7) and earlier versions for Windows, Macintosh, Linux and Solaris have received several fixes.

The zero-day bug enabled cross-site scripting attacks and was exploited in phishing emails, Adobe said.

The patches included a fix for Flash (10.3.186.6) for Android, and others for vulnerabilities rated critical which could have allowed a full system take over.

Google also patched the Flash Player flaw in its Chrome browser.

This article originally appeared at scmagazineus.com

Copyright © SC Magazine, US edition


Flash zero-day patched
 
 
 
Top Stories
Feeling Shellshocked?
Stay up to date with patching for the Bash bug.
 
Amazon forced to reboot EC2 to patch Xen bug
Rolling restarts over next week.
 
Vodafone reveals plans to store users' online activity
Says retrieval under Govt proposal will impose massive cost.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  66%
 
Advanced persistent threats
  4%
 
Unpatched or unsupported software vulnerabilities
  11%
 
Denial of service attacks
  6%
 
Insider threats
  12%
TOTAL VOTES: 1349

Vote