Adobe Patches A Dozen Serious Flash Vulnerabilities

Android users at risk to compromise through malicious Flash objects, creating the potential for drive-by attack.

Larry Seltzer, Contributor

November 10, 2011

1 Min Read

Adobe released updated versions of the Flash Player and Air for PCs and Android devices today. In the security advisory describing the update Adobe lists a dozen serious vulnerabilities that are fixed in the new versions.

The affected products are:

  • Adobe Flash Player 11.0.1.152 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems

  • Adobe Flash Player 11.0.1.153 and earlier versions for Android

  • Adobe AIR 3.0 and earlier versions for Windows, Macintosh, and Android

Android users usually have to wait for their carrier to issue an update and obtain it through them will get their updates through the Android Market. Desktop computer users can obtain the latest version of Flash at the Adobe Flash Player Download Center. Never download Flash from any other site but Adobe's; fake versions of the Flash Player are often used to distribute malware.

Adobe recently announced that they would not develop Flash for mobiles anymore. Apart from a market desire for more standards-based technology, regular critical vulnerability fixes have been hard on both Adobe and users.

Adobe's PDF standard includes complete support for embedded Flash objects, so you can expect updates soon for Acrobat and Reader to address these same problems.

Read more about:

20112011

About the Author(s)

Larry Seltzer

Larry Seltzer

Contributor

Follow Larry Seltzer and BYTE on Twitter, Facebook, LinkedIn, and Google+:

See more from Larry Seltzer
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

cybercrime abstract with two locks
Cyber Resilience
10 Cyber Incident Response Tips From Those Who've Had a Breach and Lived to Tell About It10 Cyber Incident Response Tips
bySara Peters
May 8, 2024
6 Min Read
DNA (deoxyribonucleic acid) strand, illustration.
Data Management
DNA is an Ancient Form of Data Storage. Is it Also a Radical New Alternative?DNA is an Ancient Form of Data Storage. Is it Also a Radical New Alternative?
byRichard Pallardy
May 7, 2024
15 Min Read
Paul Nakasone, former director of the National Security Agency, and a former commander of US Cyber Command, speaks at the RSA Conference 2024.
Cyber Resilience
Four Horsemen of Cyber Reunite at the RSA ConferenceFour Horsemen of Cyber Reunite at the RSA Conference
byJoao-Pierre S. Ruth
May 9, 2024
6 Min Read
Technologist and author Bruce Schneier addresses the crowd at RSA Conference 2024 about the future impacts of AI on democracy.
Machine Learning & AI
Bruce Schneier: 5 Ways AI Could Shake Up DemocracyBruce Schneier: 5 Ways AI Could Shake Up Democracy
byShane Snider
May 8, 2024
6 Min Read
Business innovative solution and creative concept as a paper boat tied to a light bulb
IT Leadership
9 Ways to Ensure Continuous Innovation9 Ways to Ensure Continuous Innovation
byLisa Morgan
Apr 2, 2024
9 Slides
Webinars
More Webinars
White Papers
More White Papers
Live Events
More Live Events
Reports
More Reports
May 2, 2024
While there are plentiful options in cyber resiliency and business continuity tools and platforms, there isn’t one that can knock out everything from sudden cloud outages to prolonged ransomware attacks in a single punch. What can you do to keep the company on its feet no matter what is thrown at it? Find out in this new virtual event.
Reserve Your Seat Now