http://www.adobe.com/support/security/bulletins/apsb11-18.html
A critical vulnerability has been identified in Adobe Flash Player 10.3.181.23 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.23 and earlier versions for Android. This memory corruption vulnerability (CVE-2011-2110) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via malicious Web pages.
Adobe recommends users of Adobe Flash Player 10.3.181.23 and earlier versions for Windows, Macintosh, Linux and Solaris update to Adobe Flash Player 10.3.181.26, available now. Adobe expects to make available an update for Adobe Flash Player 10.3.185.23 and earlier versions for Android before the end of the week of June 13, 2011.
Note: This issue does not affect the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.3) and earlier 10.x and 9.x versions for Windows and Macintosh operating systems.
------------------------------------------------------------------------------------------
Extremely Poor AV Detection on New Adobe Flash 0-Day - 2/41 (4.9%)
http://www.virustotal.com/file-scan/report.html?id=8d592113d251be2f3d2a96c53373df1b5c1d23e00397d295b60d809208ad3ab5-1308109907
Threat Mitigation - Verify Your Flash Player Version
To verify the version of Adobe Flash Player installed on your system, access the About Flash Player page. Verify the number in the "Version Information" box matches your current browser and operations system in the table below. If it doesn't, you should apply the latest version. If you use multiple browsers, perform the check for each browser you have installed on your system.
No comments:
Post a Comment