Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Adobe acknowledges critical remote vulnerability in Flash, exploits already in the wild
AppleInsider ^ | Sunday, January 25, 2015 | By AppleInsider Staff

Posted on 01/25/2015 9:08:43 PM PST by Swordmaker

Adobe on Saturday released an updated version of its Flash player software that patches an undisclosed vulnerability which could allow remote attackers to take control of Macs or PCs, urging users to update as the problem is being actively exploited by malicious actors.

Flash versions up to and including 16.0.0.287 on OS X and Windows and 11.2.202.438 on Linux are susceptible to the attack, the cause of which has yet to be detailed. Mac users with Adobe's automatic update feature enabled should begin receiving updates to version 16.0.0.296 immediately, and the company is preparing a standalone patch for manual installation to be released this week. Adobe is also working with Google to update the embedded version of Flash included in the Chrome browser.

The vulnerability — which has been assigned CVE number 2015-0311 — is "being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below," Adobe said in a security advisory. A "drive-by-download" attack is one in which software is downloaded to a user's computer without their knowledge or explicit consent.

Adobe defines CVE-2015-0311 as "critical," meaning a "vulnerability, which, if exploited would allow malicious native-code to execute, potentially without a user being aware."

Users can check the version of Flash installed on their system by visiting Adobe's About Flash Player page or right-clicking on Flash content in their browser and choosing "About Adobe (or Macromedia) Flash Player" from the contextual menu. Instructions for enabling automatic updates or manually updating Flash can be found here.


TOPICS: Business/Economy; Computers/Internet
KEYWORDS: adobe; adobeflash; adobeflashplayer; computers; computing; flash
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-68 last
To: Swordmaker
Thanks for your help. I uninstalled it.

Now another question, if you wouldn't mind. If I reinstall it using Opera as my browser instead of IE would that bypass the problem, or should I just wait until further notice from Adobe that the problem has been fixed?

61 posted on 01/26/2015 5:21:42 PM PST by CaptainK (...please make it stop. Shake a can of pennies at it.)
[ Post Reply | Private Reply | To 17 | View Replies]

Adobe Flash Malware Crushes Almost All Browsers

http://fw.to/Q4med7T


62 posted on 01/26/2015 6:36:16 PM PST by smokingfrog ( sleep with one eye open (<o> ---)
[ Post Reply | Private Reply | To 61 | View Replies]

To: CaptainK
Now another question, if you wouldn't mind. If I reinstall it using Opera as my browser instead of IE would that bypass the problem, or should I just wait until further notice from Adobe that the problem has been fixed?

I think that there will be more and more updates in the coming weeks. They referred to this update as a "beta" so there will be a final at some point. . . but that won't be the final, final, ever with Flash. Just keep on top of it as it happens.

Seven years ago Steve Jobs stated that the primary problem on OS X came from Flash Player. . . and that was why Apple would never allow it on iOS.

63 posted on 01/26/2015 6:57:53 PM PST by Swordmaker (This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 61 | View Replies]

To: smokingfrog

(Chuckle)

That’s me, all right . . .


64 posted on 01/26/2015 7:45:32 PM PST by conservatism_IS_compassion ('Liberalism'; is a conspiracy against the public by wire-service journalism.)
[ Post Reply | Private Reply | To 57 | View Replies]

To: Not gonna take it anymore
Adobe now has the 16.0.0.296 version available at the usual download location: https://get.adobe.com/flashplayer/
65 posted on 01/27/2015 5:35:30 AM PST by ken in texas
[ Post Reply | Private Reply | To 52 | View Replies]

To: ken in texas

Thanks.

Installed. Adobe always changes the default on updates and I always change them back. :-)

No automatically installed updates.


66 posted on 01/27/2015 6:15:16 AM PST by Not gonna take it anymore (If Obama were twice as smart as he is, he would be a wit)
[ Post Reply | Private Reply | To 65 | View Replies]

To: moose07

Oh, you meant “Adobe”; I saw “ADOBIE,” assumed you fat-fingered typing A DOBIE, and trotted out to the front lawn to deal with the, uh, “deposit.”

Happy to find that it’s just the usual Adobe stuff; that I can handle; statistics are in my favor, at least.

What’s difficult to cope with are the results of allowing the kids in the house to use the central computer.

I burned some hours last evening eradicating the nasty “cheaap4all” Chrome extension from my main household machine. This thing was quite unwilling to stay Removed, and actively hid itself from MBAM scans.


67 posted on 01/31/2015 10:29:19 PM PST by HKMk23 (You ask how to fight an idea? Well, I'll tell you how: with another idea!)
[ Post Reply | Private Reply | To 20 | View Replies]

To: HKMk23

It started life as a typso, but it kind of grew in amusement level ,so i left it in place. :)


68 posted on 02/01/2015 3:49:05 AM PST by moose07 (The Camels have reached the parking lot. Shields up!)
[ Post Reply | Private Reply | To 67 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-68 last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson