Adobe critical zero day vulnerability to patch

Adobe has released over this week security updates to fix critical vulnerabilities in Adobe Flash. The patches are going to address 18 vulnerabilities 15 of them allows remote code execution. CVE 2015-0313 is actively used by attackers to compromise systems using Internet Explorer and Firefox browser on Windows 8.1 or less.

TrendMicro already alerted about exploiting this zeroday where attackers have implemented the malicious exploit on several web servers. An example is a dailymotion.com that is redirected to hxxp://www.retilio.com/skillt.swf. Here if any person will visit the spoofed URL he will automatically be infected.

Adobe Flash Player users on Windows and OS X should update their plugin to Adobe Flash Player version 16.0.0.305. Adobe Flash Player Extended Support Release users should update to Adobe Flash Player 13.0.0.269 version.

Share