Microsoft issues Flash update to patch remote code execution

The update relates to a hole in platforms including Windows 8.1, Windows RT 8.1, Windows 10, and Windows Server 2016

Update key

Microsoft has released a critical update to Adobe Flash Player, which could allow hackers to use it to perform remote code execution processes if left unpatched.

"This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, Windows 10, and Windows Server 2016," the advisory said.

Microsoft added that the update should be installed immediately, but will require a restart to action it.

The update was supposed to be rolled out in last Tuesday's Patch Tuesday security update, but that was delayed due to a "last minute issue." The updates scheduled for release will now be rolled out in the March 14th update instead.

However, this part of the update has appeared much sooner, presumably because it could cause big issues if left unpatched.

The other major update due to be released last week was a zero-day flaw in the SMB file sharing protocol, but the company has, as yet, failed to fix that yet and it's unlikely we'll see a fix until 14 March.

Microsoft issued another security update to the Adobe Flash player last year, which fixed a vulnerability designated 'CVE-2016-7855', which, like this vulnerability, could give hackers access to machines running Windows 7 onwards.

"Adobe is aware of a report that an exploit exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10," said Adobe in a blog post at the time.

Featured Resources

Digital document processes in 2020: A spotlight on Western Europe

The shift from best practice to business necessity

Download now

Four security considerations for cloud migration

The good, the bad, and the ugly of cloud computing

Download now

VR leads the way in manufacturing

How VR is digitally transforming our world

Download now

Deeper than digital

Top-performing modern enterprises show why more perfect software is fundamental to success

Download now

Recommended

CMS platforms succumb to KashmirBlack botnet as businesses rush online
Security

CMS platforms succumb to KashmirBlack botnet as businesses rush online

22 Oct 2020
Government agencies see misconfigured cloud services as top security threat
Security

Government agencies see misconfigured cloud services as top security threat

22 Oct 2020
Lookout reveals mobile-first endpoint detection and response solution
Security

Lookout reveals mobile-first endpoint detection and response solution

21 Oct 2020
Cisco finds an increase in security concerns due to remote working
Security

Cisco finds an increase in security concerns due to remote working

21 Oct 2020

Most Popular

The enemy of security is complexity
Sponsored

The enemy of security is complexity

9 Oct 2020
The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

5 Oct 2020
What is a 502 bad gateway and how do you fix it?
web hosting

What is a 502 bad gateway and how do you fix it?

5 Oct 2020