Adobe and VideoLAN have released security updates for some of their software programs today. Adobe released a new version of Adobe Flash Player which fixes a security vulnerability in the popular application. The security bulletin reveals that an important security vulnerability has been identified in Adobe Flash Player 10.3.181.16 and earlier on all supported operating systems including Flash on Android. The cross-site scripting vulnerability could be used to impersonate a user on a website such as that of a webmail provider or financial website. Adobe confirmed reports that the vulnerability is actively exploited by embedded malicious links in email messages.
The update is classified as important which is the second highest severity rating available.
Flash users can verify the installed version of the application by visiting Adobe’s Flash Player page. The system is vulnerable to the attacks if the Flash version is 10.3.181.16 or earlier.
Download links are provided on the security bulletin’s page. The latest version can be downloaded from the official Get Flash Player page as well. Direct Downloads are available as well.
Adobe is currently not aware of attacks that use the authplay.dll component that ships with Adobe Reader and Acrobat. While the company is not aware of attacks at this point in time, it has not completed the investigation if authplay.dll is vulnerable to the recently discovered Flash vulnerability.
In other news: The developers of the popular video player VLC have also released a new version of their application to protect users from recently discovered security issues.
The release notes list an integer overflow vulnerability in xspf demuxer as well as several updates and rewrites of features in the latest version of the media player.
VLC users are encouraged to download and install the latest version of the player right away to protect their system from possible exploits.
Downloads are as usually offered at the official Videolan website.
Security Updates Released For Flash Player, VLC
Written By Unknown on Monday, 6 June 2011 | 11:47
Labels:
Adobe
,
Flash Player
,
Security
Post a Comment