Adobe Releases Out of Band Flash Player Patch, Announces Upcoming Reader and Acrobat Update
An update for the Flash Player has been released by Adobe, the California-based company that specializes in creating multimedia and creativity software products. Adobe Flash Player 10.0.45.2 has been released to address a critical security vulnerability that affects all previous Flash Player versions. Users are well advised to update the software to remain protected from people with malicious intent that may try to exploit it.
“A critical vulnerability has been identified in Adobe Flash Player version 10.0.42.34 and earlier. This vulnerability (CVE-2010-0186) could subvert the domain sandbox and make unauthorized cross-domain requests. Adobe recommends all users of Adobe Flash Player 10.0.42.34 and earlier versions upgrade to the newest version 10.0.45.2 by downloading it from the Adobe Flash Player Download Center or by using the auto-update mechanism within the product when prompted,” explained Adobe in this security bulletin.
Adobe also announced that on the 16th of February, it will release updates for its Reader and Acrobat software. The updates are meant to plug security holes in the software that Adobe classified as critical. Vulnerabilities are given the critical rating only if they can be exploited by a person with malicious intent to execute native-code on the targeted machine, possibly without the user realizing anything is amiss.
“Adobe is planning to release an update for Adobe Reader 9.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3 for Windows and Macintosh, and Adobe Reader 8.2 and Acrobat 8.2 for Windows and Macintosh to resolve critical security issues, including the Flash Player issue described in Security Bulletin APSB10-06. Adobe expects to make these updates available on February 16, 2010,” explained Adobe in this security bulletin.
In related news, it should be said that the upcoming Flash Player 10.1 will support Internet Explorer’s InPrivate Browsing feature. This is the feature that lets you anonymously browse the web, safe in the knowledge that the browser will not store any info related to your browsing session.
“A critical vulnerability has been identified in Adobe Flash Player version 10.0.42.34 and earlier. This vulnerability (CVE-2010-0186) could subvert the domain sandbox and make unauthorized cross-domain requests. Adobe recommends all users of Adobe Flash Player 10.0.42.34 and earlier versions upgrade to the newest version 10.0.45.2 by downloading it from the Adobe Flash Player Download Center or by using the auto-update mechanism within the product when prompted,” explained Adobe in this security bulletin.
Adobe also announced that on the 16th of February, it will release updates for its Reader and Acrobat software. The updates are meant to plug security holes in the software that Adobe classified as critical. Vulnerabilities are given the critical rating only if they can be exploited by a person with malicious intent to execute native-code on the targeted machine, possibly without the user realizing anything is amiss.
“Adobe is planning to release an update for Adobe Reader 9.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3 for Windows and Macintosh, and Adobe Reader 8.2 and Acrobat 8.2 for Windows and Macintosh to resolve critical security issues, including the Flash Player issue described in Security Bulletin APSB10-06. Adobe expects to make these updates available on February 16, 2010,” explained Adobe in this security bulletin.
In related news, it should be said that the upcoming Flash Player 10.1 will support Internet Explorer’s InPrivate Browsing feature. This is the feature that lets you anonymously browse the web, safe in the knowledge that the browser will not store any info related to your browsing session.
