Dante send me a link to an interesting article that described the latest Adobe Flash Player vulnerability. Adobe published a security advisory yesterday that described a clickjacking vulnerability. In short: An attacker could lure the unsuspecting user into clicking on a link that would give the attacker access to the computer’s microphone and webcam without the user’s knowledge.
Adobe published a temporary workaround to protect the computer system against this form of attack that users should apply until the release of a patch that would fix the critical issue.
To apply the workaround users should visit the Flash Player’s Settings Manager by following the link. There they should click on the Always Deny button which would prevent any website from accessing the microphone and webcam settings.
The new setting has to be confirmed in the popup that appears automatically after clicking on the Always deny button. The patch is said to be available before the end of October.
Related posts:
Adobe Reader, Acrobat and Flash Player Zero Day VulnerabilityAdobe Fixes Critical Shockwave Vulnerability
New Information about latest Flash Vulnerability
Unofficial Adobe Reader Patch Released
Adobe Flash Security Scan
Internet Explorer Vulnerability Fix
Firefox Spyware Add-On Adobe Flash Player 0.2
Adobe Reader and Acrobat Critical Security Update
[...] Adobe Flash Player Clickjacking Vulnerability [...]