|
|
Adobe issues 'critical' patch for Flash for AIR, OS X, Windows, Linux
|
|
|
|
MacNN Staff
Join Date: Jul 2012
Status:
Offline
|
|
Adobe has issued an emergency patch of its Flash Player technology to correct a security flaw that could allow hackers false access to thousands of popular websites -- notably Twitter, Instagram, Tumblr and eBay among many others. The patch, which will update Flash to version 14.0.0.145, is considered "critical" for users of OS X, Windows and Linux operating systems. Even if users have Flash Player disabled in their browser, they may still need to update if they are using any products that require Adobe AIR.
The updated version number for Linux users is Adobe Flash Player 11.2.202.394. Users of Google Chrome and Internet Explorer versions 10 or 11 on Windows will have the Flash versions automatically updated when they update to the latest version of those browsers. The company advises that developers using the Adobe AIR SDK and Compiler should update to Adobe AIR version 14.0.0.137 of those tools, along with users of Adobe AIR for Android. Flash technology doesn't work on iOS devices, and therefore iPad, iPhone and iPod touch owners don't need to do anything for those devices.
The flaw affects previous versions of Flash Player as well, so the software should be disabled entirely on machines too old or running older operating systems that can't update to at least version 13.0.0.231, which Adobe has made available specifically for older machines and OS versions. Macs running OS X 10.6.x or later, or PCs still on Windows XP or later, should be able to update to either the aforementioned 13.0.0.231 or the latest version of Flash, which fixes the issue.
Affected websites are also attacking the vulnerability from their end, even though no known instances of attack through this vector has been seen "in the wild" as of yet. The flaw was found to allow hackers to steal the "cookie" used by many websites off of users' computers, allowing the attacker to login to the website as the just-departed user and take control of the account on that website.
(
Last edited by NewsPoster; Jul 9, 2014 at 02:38 AM.
)
|
|
|
|
|
|
|
|
|
Dedicated MacNNer
Join Date: Aug 2001
Status:
Offline
|
|
"Flash: Patching the unpatchable since 1997."
|
|
|
|
|
|
|
|
|
Senior User
Join Date: Sep 2001
Location: in front of my computer
Status:
Offline
|
|
|
|
|
|
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Apr 2012
Status:
Offline
|
|
Really... a critical flaw in Flash? Shocking!
|
|
|
|
|
|
|
|
|
Senior User
Join Date: Sep 2001
Location: in front of my computer
Status:
Offline
|
|
I know, right? Hoocoodanode?
|
|
|
|
|
|
|
|
|
Senior User
Join Date: Jan 2007
Location: SF
Status:
Offline
|
|
Someone please just put it out of our misery.
|
|
|
|
|
|
|
|
|
Junior Member
Join Date: Aug 2007
Status:
Offline
|
|
Chances of this version also having a security flaw: 99.999%
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Forum Rules
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
|