Due to an undisclosed vulnerability in Flash player versions prior to 126.96.36.199 and 188.8.131.523, Apple has blocked access to Flash when using Safari in OS X. When visiting sites that require Flash you will now be greeted with a warning that it has been blocked and instructions on how to update it.
Today Adobe issued Security Bulletin APSB16-08, which is an Adobe Flash update that fixes 23 reported vulnerabilities. These vulnerabilities are all critical as they could allow an attacker to take control of an affected system. Adobe is also aware of a report that an exploit CVE-2016-101 is being used in limited attacks.
Today Microsoft, and Adobe all released security updates for security vulnerabilities in their products. Some of these vulnerabilities were labeled as Critical, which would allow an attacker to execute commands on the affected computer without the user's permission.
Adobe has released an update for Adobe Flash that resolves a whopping 78 vulnerabilities. This is a required update for anyone who has Flash installed as these vulnerabilities are known to be used in the wild to install malware and other attacks.
Adobe has announced that in early 2016 they will be renaming Adobe Flash Professional to Adobe Animate CC. This move will not make Flash more secure, but shows that Adobe recognizes it needs to move away from Flash to more secure technologies. A name change, though, does not mean Flash is going anywhere and will still be a a problem
Adobe releases security updates for Adobe Flash that fix 17 security vulnerabilities. Out of these 17 vulnerabilities, 16 of them could lead to remote code execution. It is important that everyone update Adobe Flash to the recommended versions so they are no longer affected by these security holes.
Microsoft released today a security update for Internet Explorer 10, Internet Explorer 11, and Microsoft Edge that updates the bundled Adobe Flash libraries. This patch is only available for users of Windows 8, Windows Server 2012, Windows RT, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10.
Adobe has released an emergency update that resolves 3 critical security vulnerabilities, including the one that was discovered by TrendMicro this week. All three of these vulnerabilities could allow an attacker to remotely execute commands on a vulnerable computer.
The latest zero-day exploit for Flash that was reported by TrendMicro is expected to be patched by an Adobe updated coming out on October 19th. This exploit is a critical vulnerability as it allows attackers to create specially crafted web pages that can execute any command on your system.
Today just as Adobe released a giant update for Flash and Reader that resolves numerous critical vulnerabilities, TrendMicro announced that they have discovered another new unpatched zero-day exploit in Flash. This exploit is actively being used by attackers in spear-phising emails against several Ministries of Foreign affairs.
New updates are available for Adobe Acrobat, Reader and Flash Player that resolve numerous security vulnerabilities. These 2 updates resolve a whopping 69 vulnerabities, with many of them being labeled as critical. These vulnerabilities range from information disclosure to remote code execution.