As noted by ArsTechnica, Adobe late yesterday issued a securitybulletin announcing that it was releasing updates to Flash Player in
order to address a pair of security vulnerabilities targeting Mac and Windows
users.
Adobe is also aware of reports that CVE-2013-0634
is being exploited in the wild in attacks delivered via malicious Flash (SWF)
content hosted on websites that target Flash Player in Firefox or Safari on the
Macintosh platform, as well as attacks designed to trick Windows users into
opening a Microsoft Word document delivered as an email attachment which
contains malicious Flash (SWF) content.
Users can manually download the new 11.5.502.146 version of FlashPlayer from Adobe's site, or those who have specified that Adobe may
update Flash Player automatically may simply allow it to do so.
In response to the issue, Apple has updated its
Xprotect anti-malware system to enforce new minimum version requirements
blocking all previous versions of Flash Player. Apple has used the system several times
over the past month to block vulnerable versions of Java.
Apple has also posted a new support document
addressing the issue and explaining to users how to update Flash Player when
they discover that the plug-in has been blocked.
You can follow me on Twitter, add me to your
circles on Google+ or Subscribe to
me on facebook or YouTube. You can also
check my website and blog to keep yourself
updated with what is happening in the ever changing world of technology
No comments:
Post a Comment