Adobe expects Flash flaw fix today
Adobe has said it expects to fix a critical vulnerability in Flash today, a week ahead of schedule.
Adobe expects to fix a critical Flash Player vulnerability today, a week before it had planned to issue a patch.
Alarm bells were ringing last week when reports emerged the flaw was being actively exploited in the wild against Adobe Flash on Windows.
An update for Flash on the Windows, Macintosh, Linux, Solaris and Android operating systems is now due to be issued today.
Google Chrome users can already protect themselves by updating to version 6.0.472.62 of the browser.
The same vulnerability exists in Adobe Reader 9.3.4 for Windows, Macintosh and UNIX, as well as Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh.
Adobe said it expects to fix the problem in those software models during the week starting 4 October, although it has not been made aware of any attacks exploiting the vulnerability in Reader or Acrobat.
Chester Wisniewski, senior security advisor at Sophos Canada, said Adobe had most likely moved the update forward because the vulnerability had been exploited in the wild.
"Stay tuned for information on the upcoming Adobe fixes. They will be very high priority and I recommend planning your deployment of these fixes as soon as possible," Wisniewski added in a blog post.
Key considerations for implementing secure telework at scale
Identifying the security risks and advanced requirements of a remote workforceDownload now
The State of Salesforce 2020
Your guide to getting the most from SalesforceDownload now
Fast, flexible and compliant e-signatures for global businesses
Be at the forefront of digital transformation with electronic signaturesDownload now
Rethink your cybersecurity strategy for the new world
5 steps to secure the enterprise and be fit for a flexible futureDownload now