Adobe releases security updates that fix critical vulnerabilities in Flash Player and AIR. One in particular, has already been exploited by hackers to pull off targeted attacks.
Adobe Flash back to talk about himself and, unfortunately, not in a positive way but because of a new critical vulnerability affecting all versions Flash Player, or available for Windows, Mac, Linux and ChromeOS. Fortunately, Adobe has released in recent hours a corrective updates that must be installed to avoid being exposed to the risks.
As specified by Adobe in the security bulletin, one of the security flaws (CVE-2016-1010) it has already been exploited by hackers to pull off targeted attacks. The exploit was used in a limited number of cases – this is the official position of Adobe. The company ranks as the identified critical vulnerabilities, which could be exploited to execute malicious code and take control of the remote computer, in a totally invisible to the end user.
The security bulletin contains detailed information about the versions affected by newly discovered vulnerabilities, which include not only Adobe Flash Player, but also AIR (Desktop Runtime, SDK, SDK&Compiler, for Android). The remedy consists in installing the latest version of the affected application. To determine what is the Adobe Flash Player version installed, simply log on to this page and review the information in the box at the top right. As for the Adobe Air version, you can follow the instructions here.
Adobe Flash has been gradually abandoned in favor of more modern and efficient solutions. According to recent estimates should completely disappear from the web within the next two years, but, in the meantime, continues to create many headaches for those who choose to continue to use it, not only from the point of view of the impact of the fixed system resources and devices Mobile who manage it, but also as regards the numerous security flaws that continue to afflict him.