Adobe on Friday issued an emergency patch for a critical bug in its Flash Player software that is being used in targeted malware attacks.
Updating to Flash version 220.127.116.11 for Windows, Macintosh and Linux closes an "object confusion" vulnerability that, if exploited, could cause an application crash or, worse, lead to the takeover of a system, according to a bulletin.
Adversaries currently are delivering emails containing the exploit as part of an attachment. Right now, only users of Internet Explorer for Windows are being hit.
Flash for Android-based mobile devices also have been updated. If the software is installed on Google's Chrome browser, it automatically was updated so users don't need to take any action.
Users are advised to patch as soon as possible.
This article originally appeared at scmagazineus.com
Copyright © SC Magazine, US edition
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.