Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Adobe acknowledges critical remote vulnerability in Flash, exploits already in the wild
AppleInsider ^ | Sunday, January 25, 2015 | By AppleInsider Staff

Posted on 01/25/2015 9:08:43 PM PST by Swordmaker

Adobe on Saturday released an updated version of its Flash player software that patches an undisclosed vulnerability which could allow remote attackers to take control of Macs or PCs, urging users to update as the problem is being actively exploited by malicious actors.

Flash versions up to and including 16.0.0.287 on OS X and Windows and 11.2.202.438 on Linux are susceptible to the attack, the cause of which has yet to be detailed. Mac users with Adobe's automatic update feature enabled should begin receiving updates to version 16.0.0.296 immediately, and the company is preparing a standalone patch for manual installation to be released this week. Adobe is also working with Google to update the embedded version of Flash included in the Chrome browser.

The vulnerability — which has been assigned CVE number 2015-0311 — is "being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below," Adobe said in a security advisory. A "drive-by-download" attack is one in which software is downloaded to a user's computer without their knowledge or explicit consent.

Adobe defines CVE-2015-0311 as "critical," meaning a "vulnerability, which, if exploited would allow malicious native-code to execute, potentially without a user being aware."

Users can check the version of Flash installed on their system by visiting Adobe's About Flash Player page or right-clicking on Flash content in their browser and choosing "About Adobe (or Macromedia) Flash Player" from the contextual menu. Instructions for enabling automatic updates or manually updating Flash can be found here.


TOPICS: Business/Economy; Computers/Internet
KEYWORDS: adobe; adobeflash; adobeflashplayer; computers; computing; flash
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-68 next last
To: moose07

Afternoon Moose.


21 posted on 01/26/2015 4:50:12 AM PST by no-to-illegals (Scrutinize our government and Secure the Blessing of Freedom and Justice)
[ Post Reply | Private Reply | To 20 | View Replies]

To: no-to-illegals

Good Morning ,NTI.
How’s tricks?


22 posted on 01/26/2015 5:19:43 AM PST by moose07 (The Camels have reached the parking lot. Shields up!)
[ Post Reply | Private Reply | To 21 | View Replies]

To: moose07
How’s tricks?

Was told, and it's a rumor, kind of second hand knowledge thus would have to answer ... tricky?

23 posted on 01/26/2015 5:23:23 AM PST by no-to-illegals (Scrutinize our government and Secure the Blessing of Freedom and Justice)
[ Post Reply | Private Reply | To 22 | View Replies]

To: Swordmaker

Thanks for the ping Sword...many computer users are amateurs, not pros like many who dismiss the impact these events may cause to the average user.

And I don’t think you engaged in hyperbole, IMO.


24 posted on 01/26/2015 5:49:52 AM PST by SZonian (Throwing our allegiances to political parties in the long run gave away our liberty.)
[ Post Reply | Private Reply | To 9 | View Replies]

To: Swordmaker
Yesterday when I powered up my Windows 7 IE11 desktop, a Flash player update screen popped up. I let it install (minus the annoying "Do you want this default browser, search engine, yada yada yada" pitch).

Checked just now, and I have version 16.0.0.296, which I assume patched the vulnerability. Will check the Windows 8.1 laptop that my wife uses in a few minutes. Thanks very much for posting your valuable and timely threads!


25 posted on 01/26/2015 5:53:11 AM PST by deoetdoctrinae (Gun-free zones are playgrounds for felons.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: moose07

Is it that time of the week again?


26 posted on 01/26/2015 5:54:11 AM PST by Dead Corpse (A Psalm in napalm...)
[ Post Reply | Private Reply | To 20 | View Replies]

To: rdb3; Calvinist_Dark_Lord; JosephW; Only1choice____Freedom; amigatec; Ernest_at_the_Beach; ...

27 posted on 01/26/2015 5:58:13 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: moose07
Thanks for the ping my FRiend.


28 posted on 01/26/2015 6:01:34 AM PST by deoetdoctrinae (Gun-free zones are playgrounds for felons.)
[ Post Reply | Private Reply | To 20 | View Replies]

To: moose07

Thank You for the Ping Moose!


29 posted on 01/26/2015 6:02:52 AM PST by KC_Lion (Build the America you want to live in at your address, and keep looking up.- Sarah Palin)
[ Post Reply | Private Reply | To 20 | View Replies]

To: Swordmaker

Thanks for the ping.


30 posted on 01/26/2015 6:09:32 AM PST by KevinB (Barack Obama: Our first black, gay, Kenyan, Socialist, Muslim president!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: All

http://helpx.adobe.com/flash-player.html


31 posted on 01/26/2015 6:10:24 AM PST by smokingfrog ( sleep with one eye open (<o> ---)
[ Post Reply | Private Reply | To 1 | View Replies]

To: moose07

I’m starting to think I need to UNINSTALL ADOBE AND FLASH


32 posted on 01/26/2015 6:57:35 AM PST by Lazamataz (With friends like Boehner, we don't need Democrats. -- Laz A. Mataz, 2015)
[ Post Reply | Private Reply | To 20 | View Replies]

To: deoetdoctrinae
re: Checked just now, and I have version 16.0.0.296, which I assume patched the vulnerability.

Interesting. I just checked Adobe's site and it still lists 16.0.0.287 as the current version. A scan with Secunia PSI shows the latest version to be 16.0.0.296 but Adobe doesn't seem to have it.

33 posted on 01/26/2015 6:58:36 AM PST by ken in texas
[ Post Reply | Private Reply | To 25 | View Replies]

To: Dead Corpse

Monday morning mayhem...yes, afraid so. :)


34 posted on 01/26/2015 7:37:04 AM PST by moose07 (The Camels have reached the parking lot. Shields up!)
[ Post Reply | Private Reply | To 26 | View Replies]

To: Swordmaker; COUNTrecount; Nowhere Man; FightThePower!; C. Edmund Wright; jacob allen; ...

The biggest killer of mankind

Nut-job Conspiracy Theory Ping!

To get onto The Nut-job Conspiracy Theory Ping List you must threaten to report me to the Mods if I don't add you to the list...

35 posted on 01/26/2015 7:45:00 AM PST by null and void (The aggregate effect of competitive capitalism is indistinguishable from magic)
[ Post Reply | Private Reply | To 1 | View Replies]

To: null and void

No wonder the damn thing keeps asking me if I want to install updates.


36 posted on 01/26/2015 7:46:04 AM PST by Texas Eagle (If it wasn't for double-standards, Liberals would have no standards at all -- Texas Eagle)
[ Post Reply | Private Reply | To 35 | View Replies]

To: CaptainK

Control Panel
Uninstall
Select Flash Player.................


37 posted on 01/26/2015 7:48:06 AM PST by Red Badger (If you compromise with evil, you just get more evil..........................)
[ Post Reply | Private Reply | To 11 | View Replies]

To: deoetdoctrinae

“Checked just now, and I have version 16.0.0.296”

Where exactly do you check for that?


38 posted on 01/26/2015 7:51:32 AM PST by Carriage Hill ( Some days you're the windshield, and some days you're the bug.)
[ Post Reply | Private Reply | To 25 | View Replies]

To: smokingfrog

“f you see clouds moving in the animation below, congratulations, you have successfully installed Flash Player!”

The clouds are moving, but I didn’t do anything. Does that mean the update was automatically installed? It says my version is .296


39 posted on 01/26/2015 7:55:39 AM PST by Dr. Bogus Pachysandra (Don't touch that thing Don't let anybody touch that thing!I'm a Doctor and I won't touch that thing!)
[ Post Reply | Private Reply | To 31 | View Replies]

To: deoetdoctrinae

Found it, thanks.

+http://helpx.adobe.com/flash-player/kb/installation-problems-flash-player-windows.html


40 posted on 01/26/2015 7:57:52 AM PST by Carriage Hill ( Some days you're the windshield, and some days you're the bug.)
[ Post Reply | Private Reply | To 25 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-68 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson