Adobe plans emergency patch

For discussions about security.
Post Reply
Message
Author
User avatar
James C
Posts: 6618
Joined: Thu 26 Mar 2009, 05:12
Location: Kentucky

Adobe plans emergency patch

#1 Post by James C »

http://www.pcworld.com/article/3052239/ ... ility.html

Adobe plans emergency patch


[quote] Adobe is working on an emergency patch for its Flash Player after attackers are reportedly exploiting a critical flaw.

The vulnerability, CVE-2016-1019, affects Flash Player version 21.0.0.197 on Windows, Mac, Linux and Chrome OS, according to an advisory published on Tuesday.

The flaw is being actively exploited on Windows XP and 7 systems running Flash Player versions 20.0.0.306 and earlier.

“Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system,
Top
User avatar
Ted Dog
Posts: 3965
Joined: Wed 14 Sep 2005, 02:35
Location: Heart of Texas

#2 Post by Ted Dog »

Its like a boilerplate warning now, just plug in version of flash and it sends the emails to media outlets that yet another 'bug' needs to be updated.
Top
User avatar
James C
Posts: 6618
Joined: Thu 26 Mar 2009, 05:12
Location: Kentucky

been used over the last two weeks to distribute ransomware

#3 Post by James C »

http://www.pcworld.com/article/3053607/ ... mware.html
The latest zero-day vulnerability in Adobe Systems' Flash player has been used over the last two weeks to distribute ransomware called Cerber, email security vendor Proofpoint said.

Adobe said it would patch the flaw, CVE-2016-1019, on Thursday. The vulnerability affects all versions of Flash Player on Windows, Mac, Linux and Chrome OS.

Ryan Kalember, senior vice president of cybersecurity at Proofpoint, said his company detected an attack trying to exploit the flaw on Saturday.

One of Proofpoint's customers received an email with a document that contained a malicious macro that led victims through a series of redirects that eventually reached an exploit kit.
Top
User avatar
Mike Walsh
Posts: 6351
Joined: Sat 28 Jun 2014, 12:42
Location: King's Lynn, UK.

#4 Post by Mike Walsh »

I've already been running 21.0.0.213 for the past 3-4 days...but thanks for the heads-up, James.

Libpepflashplayer.so module, and install instructions, available here:-

http://www.murga-linux.com/puppy/viewto ... 336#894336

UPDATE:- PepperFlash .pets for Chrome/Chromium/SlimJet now available here.

Hope that helps..!

(EDIT:- Doesn't really affect Puppy users that much anyway. In my case, all external storage media are only plugged in when required, and all my important stuff is stored here as a matter of course. If Puppy should get infected.....wipe, re-format, copy'n'paste Pup back-ups, run Grub4DOS; up-and-running again in probably less than 20 mins. What could be simpler?)

Puppy users LAUGH at ransomware..! Yess!!! :lol: :lol:


Mike. :wink:
Top
User avatar
James186282
Posts: 270
Joined: Tue 08 Sep 2009, 19:14
Location: Minnesota

#5 Post by James186282 »

Personally I just say no to anything made by Adobe. They make these huge programs that are always filled with security holes. Fool me once shame on you. Fool me through version 11 and someone sock me over the head with a brick.
Science is what we understand well enough to explain to a computer.
Art is everything else we do.
[i]Donald Knuth [/i]
Top
Post Reply

Return to “Security”