Adobe Patches Flash Player Again, Another Bug Remains Under Attack

Adobe Flash PlayerOh, Adobe Flash Player. What are we going to do with you?

Adobe released a security update for Flash Player just ten days ago, squashing 9 bugs in the software.

Yesterday brought another Flash Player update, fixing a critical vulnerability (CVE-2015-0310) that’s actively being exploited in cyberattacks. Adobe urged users to update Flash Player immediately as a result. Windows and Mac users were advised to update to Adobe Flash Player 16.0.0.287.

Users can expect another Flash Player update from Adobe next week since there is a new critical vulnerability (CVE-2015-0311) currently being used in drive-by-download attacks.

The following versions of Adobe Flash Player are affected by the new vulnerability:

  • Adobe Flash Player 16.0.0.287 and earlier versions for Windows and Macintosh
  • Adobe Flash Player 13.0.0.262 and earlier 13.x versions
  • Adobe Flash Player 11.2.202.438 and earlier versions for Linux

Adobe warns that the attacks being carried out are targeting systems running Internet Explorer and Firefox on Windows 8 and below. If you use IE or Firefox on Windows, you may want to disable or uninstall Adobe Flash Player until a patch is released.

Need help disabling Flash Player in your browser?

Like this post? Follow us online by liking us on Facebook, following us on Twitter (@thechipmerchant), or circling us on Google+.