Another Zero-Day Flash Vulnerability Surfaces
Posted on by Peter James
Adobe has issued a security advisory warning users of yet another zero-day Flash vulnerability that the company says is being exploited in the wild. This vulnerability affects not only Adobe Flash, but also Adobe Reader and Acrobat. Considered to be critical, this bug “could cause a crash and potentially allow an attacker to take control of the affected system.” The following software is affected:
Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions for Windows, Macintosh, Linux and Solaris.
Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions for Windows, Macintosh and UNIX.
The Adobe security advisory offers a workaround for Windows, but not for Mac, so it looks like Mac users will just have to wait for an update. Or avoid visiting sites that use Flash (not very easy), and avoid using Adobe Reader or Acrobat (much easier).