Adobe rushes out fix for Flash Player zero-day vulnerabilities

News

Adobe rushes out fix for Flash Player zero-day vulnerabilities

Warwick Ashford

Adobe has rushed out a fix for zero-day vulnerabilities in its Flash Player in less than a week, proving claims that a process review has improved its security team's response times.

The latest version of Adobe's Flash Player Windows, Mac and Linux fixes vulnerabilities reported in a security advisory by the software firm on 4 June.

Adobe confirmed that criminals have been exploiting the flaw using malicious Flash swf files, which are typically opened by the Web browser's Flash Player plugin, or through PDFs that have maliciously encoded Flash components embedded inside them.

Those malicious PDFs are typically opened by Reader or Acrobat, which include their own versions of Flash Player, due to be patched on 29 June.

The updated software from Adobe fixes 32 vulnerabilties, but it is still unclear when a similar update will be issued for Flash Player on Solaris.

Adobe's Flash and Reader software have become prime hacking targets in the past year because of the software's large install base.

The software company is considering increasing the frequency of security updates along the same lines as Microsoft's monthly Patch Tuesday, Brad Arkin, Adobe's director of security and privacy has said in recent weeks.


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy