Frontpage
Forums
Tutorials
Members
Calendar
Subscription
Donate
Links
Contact 
Help
Latest Software News
Latest Hardware News
Latest Mobile
Latest Security News
Latest Forum Posts
Latest News Comments
-
Firefox 8 released, finally...
By MohdNishat, May 18 2013 02:45 PM
-
Google Chrome vs. IE10 on W...
By MohdNishat, May 18 2013 02:42 PM
-
Microsoft rebrands itself
By j7n, Apr 30 2013 05:00 AM
-
Microsoft rebrands itself
By j7n, Apr 30 2013 05:00 AM
-
Google releases Metro-style...
By gelapir, Apr 29 2013 04:59 AM
MSFN Statistics
Recommended Sites
Adobe Patches Zero Day XSS Flash Flaw
Adobe issued a new security update for its Adobe Flash Player on Sunday, fixing a vulnerability that has been categorized as being, 'important'. The important rating is Adobe's second highest security rating behind 'critical' and above 'moderate'. The important flaw is a cross site scripting (XSS) vulnerability that affects Windows, Macintosh, Linux, Solaris and Android versions of Flash Player. According to Adobe, the flaw is already being exploited in the wild via malicious email links.
"This universal cross-site scripting vulnerability (CVE-2011-2107) could be used to take actions on a user's behalf on any website or webmail provider, if the user visits a malicious website," Adobe warned it is advisory.
The new Adobe Flash Player 10.3.181.22 provides a fix for the XSS flaw for Windows, Macintosh, Linux and Solaris. Adobe has not yet issued an update for Android users, though the plan is to have a new Flash Player for Android release out this week.
Adobe's Reader and Acrobat programs may also potentially be at risk as well.
"Adobe is still investigating the impact to the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.2) and earlier 10.x and 9.x versions of Adobe Reader and Acrobat for Windows and Macintosh operating systems," Adobe warned.
Source: internet.com
0 Comments
Page 1 of 1
Page 1 of 1