Adobe will release this week Patch zero-day vulnerability in Flash




Adobe has released no patch on his day patch for a critical vulnerability in Flash. The company warns that the leak is actively used and announces Thursday to come up with a solution.

Adobe Flash Player logo (75 pix) The warning Adobe bases its statement that the vulnerability is being actively used on a message of security firm Kaspersky. The vulnerability refers to CVE-2016-4171, available in Flash version 21.0.0242 and earlier on Windows, OS X, Linux, and Chrome OS. The leak is used in “limited and targeted attacks.

According to Kaspersky, the users known as the group StarCruft, which is classified by the company as apt . This group is active in several countries, including Russia, Nepal, South Korea, China and Kuwait. In addition to the Flash exploit makes the group different campaigns using a second vulnerability in Flash and another in Internet Explorer. StarCruft targets of his high profile victims, “said Kaspersky.

Windows EMET security system must be effective against the attack, as the company adds. After the patch from Adobe, Kaspersky wants more information to release about the identified attack. Adobe recommends users update to his blog to keep in mind to be aware of a patch. Tweakers recently wrote a background on Flash, which has long been plagued by vulnerabilities.


In: A Technology & Gadgets Asked By: [22641 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »