Microsoft issues Flash update to patch remote code execution

The update relates to a hole in platforms including Windows 8.1, Windows RT 8.1, Windows 10, and Windows Server 2016

Update key

Microsoft has released a critical update to Adobe Flash Player, which could allow hackers to use it to perform remote code execution processes if left unpatched.

"This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, Windows 10, and Windows Server 2016," the advisory said.

Microsoft added that the update should be installed immediately, but will require a restart to action it.

The update was supposed to be rolled out in last Tuesday's Patch Tuesday security update, but that was delayed due to a "last minute issue." The updates scheduled for release will now be rolled out in the March 14th update instead.

However, this part of the update has appeared much sooner, presumably because it could cause big issues if left unpatched.

The other major update due to be released last week was a zero-day flaw in the SMB file sharing protocol, but the company has, as yet, failed to fix that yet and it's unlikely we'll see a fix until 14 March.

Microsoft issued another security update to the Adobe Flash player last year, which fixed a vulnerability designated 'CVE-2016-7855', which, like this vulnerability, could give hackers access to machines running Windows 7 onwards.

"Adobe is aware of a report that an exploit exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10," said Adobe in a blog post at the time.

Featured Resources

The IT Pro guide to Windows 10 migration

Everything you need to know for a successful transition

Download now

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Software-defined storage for dummies

Control storage costs, eliminate storage bottlenecks and solve storage management challenges

Download now

6 best practices for escaping ransomware

A complete guide to tackling ransomware attacks

Download now

Recommended

Visit/laptops/34636/microsoft-surface-laptop-3-hands-on-review-powerfully-tempting
Laptops

Microsoft Surface Laptop 3 13in review: Almost the perfect laptop

6 Dec 2019
Visit/hardware/laptops/354275/microsoft-surface-laptop-3-15in-review-ryzen-falls
Laptops

Microsoft Surface Laptop 3 15in review: Ryzen falls

4 Dec 2019
Visit/cloud/354231/the-it-pro-podcast-is-the-future-multi-cloud
Cloud

The IT Pro Podcast: Is the future multi-cloud?

29 Nov 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/security/identity-and-access-management-iam/354289/44-million-microsoft-customers-found-using
identity and access management (IAM)

44 million Microsoft customers found using compromised passwords

6 Dec 2019
Visit/cloud/microsoft-azure/354230/microsoft-not-amazon-is-going-to-win-the-cloud-wars
Microsoft Azure

Microsoft, not Amazon, is going to win the cloud wars

30 Nov 2019
Visit/operating-systems/microsoft-windows/354297/this-exploit-could-give-users-free-windows-7-updates
Microsoft Windows

This exploit could give users free Windows 7 updates beyond 2020

9 Dec 2019
Visit/hardware/354237/five-signs-that-its-time-to-retire-it-kit
Sponsored

Five signs that it’s time to retire IT kit

29 Nov 2019