ghacks Technology News

Adobe Hit By Yet Another Flash 0-day Exploit

Some time ago I made the decision to dump the two popular Adobe products Adobe Flash and Adobe Reader from my system. Since then, Adobe did not come to rest, as the company was hit by one 0-day exploit after the other. What made matters worse was the reaction time to fix the exploits, which usually were a week at best and often a month or more.

User systems in the meantime were susceptible to those attacks. The latest critical vulnerability in Flash was revealed in a security advisory at the Adobe website.

The critical vulnerability in all Flash Player versions for all supported operating systems – yes even Android – impacts not only systems running Flash, but also systems running Adobe Reader 9.3.4 and Adobe Acrobat 9.3.4.

Adobe states that “this vulnerability could cause a crash and potentially allow an attacker to take control of the affected system” with reports that the vulnerability is already actively exploited in the wild “against Adobe Flash Player on Windows”.

Adobe expects to provide an update during the week of September 27 for Adobe Flash Player, and October 4 for Adobe Reader and Acrobat.

Until then, all users running Adobe Flash or Adobe Reader / Acrobat are vulnerable to the critical vulnerability. Make sure your security software detects the vulnerability and blocks it from execution.

One question that Chrome readers may have in mind: Is the build in Flash plugin also susceptible for attacks? In short, yes it is. The latest Chrome internal Flash Player plugin version is listed as 10.1.82.76, which is exactly the version that is vulnerable. The design of the browser may however mitigate the impact on the system, as may the out of process feature of the Firefox web browser.

We say may because we have no confirmation at this point.

Related Articles:

Adobe Security Updates For Flash, Adobe Reader
Adobe Reader, Acrobat and Flash Player Zero Day Vulnerability
Critical Adobe Reader And Flash Vulnerabilities Emerge
Adobe release ‘critical’ Flash patch
Adobe Patch Day Brings Fixes For Flash, Shockwave And Adobe Reader

Enjoyed the article?: Then sign-up for our free newsletter or RSS feed to kick off your day with the latest technology news and tips, or share the article with your friends and contacts on Facebook, Twitter or Google+ using the icons below.


About the Author:Martin Brinkmann is a journalist from Germany who founded Ghacks Technology News Back in 2005. He is passionate about all things tech and knows the Internet and computers like the back of his hand. You can follow Martin on Facebook or Twitter.

Author: , Tuesday September 14, 2010 -
Tags:, , , , ,

Previous Post: Smart Power, Save Energy With Efficient Power Saving Rules

Next Post: Verify That TRIM Is Enabled In Windows 7

Click on the following link(s) to read more about Adobe, Browsing, Firefox, Google Chrome, Internet Explorer, Opera

Responses so far:

  1. DanTe says:
    September 14, 2010 at 5:57 pm

    I’m losing count. So who has the most security holes? Apple or Adobe?

    Reply

Leave a Reply   Follow Ghacks   Subscribe To Comment Rss

Subscribe without commenting

Follow This Blog

 Ghacks Technology Newsletter 
Ghacks Daily Newsletter
RSS Feeds
Google+ Page; Facebook Fan Page; Twitter

Recent Posts


Popular Articles

Popular Searches

Topics

Links

About Ghacks

Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular latest tech news sites on the Internet with five authors and regular contributions from freelance writers.

Services

Authors

Martin Brinkmann
Melanie Gross
Mike Halsey
Ryan D. Lang
Jack Wallen

© 2005-2012 Ghacks.net. All Rights Reserved. Privacy Policy - About Us