Adobe issues security patch to fix Flash flaw


by CBR Staff Writer| 27 February 2013

The security patch is the third in February and the fourth this year

Adobe has released emergency security updates for its Flash Player to deal with three vulnerabilities in Flash, which hackers have been exploiting to launch attacks.

The new updates are aimed at addressing vulnerabilities that could cause a crash and potentially allow a hacker to take over the affected system.

Adobe's advisory stated that the company is aware of reports that CVE-2013-0643 and CVE-2013-0648 are being exploited in the wild in targeted attacks designed to trick the user into clicking a link which directs to a website serving malicious Flash content.

"The exploit for CVE-2013-0643 and CVE-2013-0648 is designed to target the Firefox browser," the advisory stated.

According to Adobe, both security flaws are being exploited in targeted attacks that try to scam Windows users into clicking on a malicious PDF file through an email and the bugs are claimed to be 'zero-day' vulnerabilities.

Adobe recommended users upgrade Flash Player to the latest version.

Post a comment

Comments may be moderated for spam, obscenities or defamation.

Join our network

756 people like this.
0 people follow this.

Security Intelligence

Privcy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.