“Adobe on Saturday released an updated version of its Flash player software that patches an undisclosed vulnerability which could allow remote attackers to take control of Macs or PCs, urging users to update as the problem is being actively exploited by malicious actors,” AppleInsider reports.
“Flash versions up to and including 184.108.40.2067 on OS X and Windows and 220.127.116.118 on Linux are susceptible to the attack, the cause of which has yet to be detailed,” AppleInsider reports. “Mac users with Adobe’s automatic update feature enabled should begin receiving updates to version 18.104.22.1686 immediately, and the company is preparing a standalone patch for manual installation to be released this week.”
AppleInsider reports, “The vulnerability — which has been assigned CVE number 2015-0311 — is ‘being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below,’ Adobe said in a security advisory.”
More info and links in the full article here.
MacDailyNews Take: Adobe Flash is a toxic waste dump.
[Thanks to MacDailyNews Reader “Lynn Weiler” for the heads up.]