Adobe Releases Critical Patch for Flash

Adobe reports that its latest Flash Player 11.2 has been designed to fix twin vulnerabilities of 'critical' nature. The previous editions of Flash Player allowed attackers to exploit the vulnerabilities causing the target computer to collapse, and thereby let the miscreants acquire hold over the system. H Security published this dated March 29, 2012.

Adobe also reports that the update is compatible with all OSs -Solaris, Linux, Mac OS X and Windows. Its importance rate has been assigned "priority 2," implying the company hasn't yet known about any exploit for it, but advises users for installing it by the coming month.

In the meantime, of the two security flaws, one relates to heap overflow whilst examining Internet addresses' credibility, as also just impacts Internet Explorer running within Windows Vista or 7. The other flaw relates to memory corruption within the NetStream category thereby letting hackers to run random code. It impacts each-and-every presently-supported OSs such as Android, Linux, Windows, Solaris and Mac OS X. But, of Android a mobile OS, merely its 2.x along with 3.x versions are affected whereas the 4.x version namely "Ice Cream Sandwich" isn't.

Moreover, Adobe's Update page has been used for doing something really terrible -thrusting intermediate scareware software, which extorted money from inexperienced computer-users.

Security researchers stated that it was a favorite among con artists to strike unwary PC-users via exploiting the security flaws within intermediate software. A highly popular medium for doing that was Adobe's Flash for which critical patches were developed remarkably often, they illustrated.

Nevertheless, it's possible to install one zero-day patch devoid of the need for end-user verification, provided that user allows the update to run behind his PC's screen. Expectedly, Adobe will regularly issue feature-bearing products too which by activating an update alert, will outline fresh and thrilling utilities of Flash to end-users.

Simultaneously, Adobe has issued a patch to fix its AIR runtime condition error, which's in version 3.2.0.2070.

Overall Adobe said that for corporate-users or any other, who failed to assimilate the latest Flash Player 11.2, could go for Flash Player 10.3 Update 10.3.183.18, which had all the critical patches.

Related article: Adobe Rates Acrobat Vulnerabilities “Critical”

» SPAMfighter News - 4/7/2012