iHelplounge Tech News, iPhone Apps and Reviews
Adobe has released an interim patch for its Flash Player software, because two security problems in the software were discovered. The bugs were exploited in the wild, and therefore the patch five days earlier than scheduled brought out.
Actually, Adobe plans to Tuesday an update to its Flash Player to issue, in line with the regular schedule for patches, like many other companies that handle. So shortly prior to issue an interim patch to bring highlights the seriousness of the security problems. The two bugs, both of which allow attackers to run code of conduct.
Both vulnerabilities were exploited in the wild and made it possible for attackers to malicious Flash object in a Word document to hide. In practice, that Word documents by mail sent to potential targets. One of the bugs was furthermore Firefox and Safari on OS X vulnerable to the attack, in which users could get infected by visiting a Web site that contains specially crafted Flash object. That Chrome was not vulnerable, probably means that the bug is not in the secure environment of Chrome could escape; Firefox for OS X does not have it yet.
Vulnerabilities in plugins like Java and Flash are often used by attackers to spread malware. Studies of both Kaspersky and Cisco that vulnerabilities in Java are most often abused to spread malware. Therefore often exploit kits used that exploit software vulnerabilities to install malware, such as a trojan that attempts to steal banking details.
