Adobe Patches Flash Scripting Security Flaw

| News

Adobe released a patch for a Flash scripting-related security flaw on Monday that the company is calling “important.” The flaw affects Flash Player 10.3.181.16 and earlier on Mac OS X, Windows, Linux and Solaris, along with FLash Player 10.3.185.22 and earlier for Android OS.

Adobe Flash Player, now with one less security flawFlash Player update patches another security flaw

The scripting flaw, as described in Adobe Security Bulletin CVE-2011-2107, “could be used to take actions on a user’s behalf on any website or webmail provider, if the user visits a malicious website.”

Adobe claims the flaw is already being exploited and that victims are being sent emails with malicious links embedded in the message body.

The Flash Player 10.3.181.22 update addresses the scripting flaw, and Adobe is recommending all users install the update immediately. Flash Player 10.3.185.22 for Android will include the same patch and should be available some time this week.

Sign Up for the Newsletter

Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday.

Comments

RonMacGuy

Wow, nasty stuff. Glad I don’t have to deal with stuff like this on my mobile devices!!

I love the version numbering. Version 10.3.185.22 - I wonder how many separate flash updates there have been since its release. Thousands? Seems like every time I update my Firefox it gives me a message that “now my flash is outdated” and I need to update yet again.

Steven Munro

Whenever there is a sale at Art Van there seams to be a Flash update (for all you non-mid westerners that’s a very common occurrence)

Log-in to comment