Adobe patches Flash again as Firefox users are under attack
Posted on 27 February 2013.
Adobe is urging users to update their Flash Player for the third time this month, as once again the company is aware of vulnerabilities being exploited in the wild in targeted attacks.

The attackers are trying to trick users into clicking a link which directs to a website serving malicious Flash (SWF) content and, according to the security bulletin released by Adobe, Firefox users are particularly at risk.

The update fixes three vulnerabilities in total (CVE-2013-0504, CVE-2013-0643 and CVE-2013-0648), but currently only the latter two - a Flash Player Firefox sandbox flaw and a vulnerability in the ExternalInterface ActionScript feature - have been spotted being exploited in active attacks.

Users who have set up automatic updating for Flash need only to wait for the updates to be pushed out. The rest are advised to download patched version for Windows, Mac and Linux.

Windows and Mac users and administrators are urged to do so as soon as possible, while those using Linux can do so at their discretion.









Spotlight

Cloned, booby-trapped Dark Web sites steal bitcoins, login credentials

Apart from being a way for dissidents and journalists to do their business without being spotted and identified by "the powers that be", the Dark Web is also a place where criminals sell and buy illegal wares and services and, apparently, where they also get robbed by scammers.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Jul 3rd
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //