Author Topic: Adobe Flash Player 21.0.0.213  (Read 4130 times)

0 Members and 1 Guest are viewing this topic.

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Adobe Flash Player 21.0.0.213
« on: Thursday, 07 April, 2016 @ 18:38:32 »
Adobe Flash Player 21.0.0.213
freeware, released 07/04/16

Security update, fixes a vulnerability that is being exploited.

Should auto-update (eventually), download should be available from https://get.adobe.com/flashplayer/

Check which version you have got installed: http://www.adobe.com/uk/software/flash/about/

Beware unnecessary pre-ticked optional extras.

How to update Adobe Flash - or uninstall it completely!

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Adobe Flash Player 21.0.0.213
« Reply #1 on: Saturday, 09 April, 2016 @ 01:59:34 »
Quote
Among the vulnerabilities patched in the update is CVE-2016-1019, a remote code execution vulnerability that is currently being exploited in the wild by the Magnitude Exploit Kit. According to researchers with Trend Micro, the flaw is being targeted in both Windows and OS X systems to perform automated malware installs.

Simply browsing a webpage booby-trapped with a malicious Flash file is enough to trigger execution of evil code, allowing miscreants to potentially snoop on victims' passwords and other sensitive information on their computers.

Adobe is recommending that users update Flash as soon as possible to patch the flaws. Users running Chrome, Internet Explorer and Edge will automatically get the update when updating their browser.

Researchers have suggested that users... disable Flash Player in order to prevent attacks.
http://www.theregister.co.uk/2016/04/08/update_flash_now_or_kill_it/

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Adobe Flash Player 21.0.0.213
« Reply #2 on: Saturday, 09 April, 2016 @ 02:03:32 »
Quote
I'll make it very simple: update Adobe Flash now, or get rid of it altogether.

If you're not quite ready to take the step of entirely uninstalling Flash, then you should at the very least consider enabling "Click to Play", which stops Flash elements from being rendered in your browser unless you give specific permission.
https://www.grahamcluley.com/2016/04/adobe-flash-update-actively-exploited-zero-day-flaw/