Almost all Windows users vulnerable to Flash zero-day attacks
http://www.networkworld.com/news/2009/07...y_am_2009-07-28
The most-current versions of Flash Player -- 9.0.159.0 and 10.0.22.87) -- are vulnerable to hackers conducting drive-by attacks hosted on malicious and legitimate-but-compromised sites. Antivirus vendors have reported hundreds, in some cases thousands, of sites launching drive-bys against Flash
...
Adobe has acknowledged that Flash, Reader and Acrobat contain a critical bug. Last Wednesday, it kicked its security process into high gear, promising it would deliver patches for Flash by July 30, and fixes for Reader and Acrobat by July 31.
Until then, users have few options other than to delete, disable or rename the flawed component, "authplay.dll;" Adobe has posted terse instructions in a security bulletin, as have other organizations, including the U.S. Computer Emergency Response Team ( US-CERT).
The bug at the root of the vulnerability was first logged in Adobe's bug tracking database nearly seven months ago, at the end of 2008. ...
Adobe says this issue is a flaw on Windows, Mac & Linux as per http://www.adobe.com/support/security/advisories/apsa09-03.html
http://www.networkworld.com/news/2009/07...y_am_2009-07-28
The most-current versions of Flash Player -- 9.0.159.0 and 10.0.22.87) -- are vulnerable to hackers conducting drive-by attacks hosted on malicious and legitimate-but-compromised sites. Antivirus vendors have reported hundreds, in some cases thousands, of sites launching drive-bys against Flash
...
Adobe has acknowledged that Flash, Reader and Acrobat contain a critical bug. Last Wednesday, it kicked its security process into high gear, promising it would deliver patches for Flash by July 30, and fixes for Reader and Acrobat by July 31.
Until then, users have few options other than to delete, disable or rename the flawed component, "authplay.dll;" Adobe has posted terse instructions in a security bulletin, as have other organizations, including the U.S. Computer Emergency Response Team ( US-CERT).
The bug at the root of the vulnerability was first logged in Adobe's bug tracking database nearly seven months ago, at the end of 2008. ...
Adobe says this issue is a flaw on Windows, Mac & Linux as per http://www.adobe.com/support/security/advisories/apsa09-03.html