{"id":43783,"date":"2015-07-08T13:22:59","date_gmt":"2015-07-08T20:22:59","guid":{"rendered":"http:\/\/www.intego.com\/mac-security-blog\/?p=43783"},"modified":"2015-07-08T13:23:39","modified_gmt":"2015-07-08T20:23:39","slug":"adobe-patches-flash-security-flaw-under-attack-in-the-wild","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/adobe-patches-flash-security-flaw-under-attack-in-the-wild\/","title":{"rendered":"Adobe Patches Flash Security Flaw Under Attack in the Wild"},"content":{"rendered":"

\"adobe-patched-header\"<\/a>Adobe Systems has issued a mammoth security update with patches for a combined 36 vulnerabilities, one of which is currently under attack in the wild<\/a>. The most critical flaw, CVE-2015-5119, could lead to code execution. Adobe\u2019s Flash Player updates are available for Macintosh, Windows and Linux.<\/p>\n

\u201cAdobe is aware of a report that CVE-2015-5119 is being actively exploited in the wild,\u201d said Adobe<\/a>. As noted by Lucian Constantin over at PCWorld<\/a>, cybercriminals began using the exploit just a day after it was leaked from a surveillance software developer. Constantin wrote:<\/p>\n

The exploit was found by security researchers yesterday<\/a> among the 400GB worth of files stolen recently from Hacking Team, an Italian company that develops and sells intrusion and surveillance software to government agencies.<\/p><\/blockquote>\n

Similarly, it took just one extra day for Adobe Systems to patch the vulnerability with today’s\u00a0release of Adobe Flash Player 18.0.0.203 for Mac and Windows.<\/p>\n

Cybercriminals use Exploit Kits to attack known vulnerabilities in browser plug-ins, such as Flash Player and other Adobe software, and install malware on a victim\u2019s computer. \u201cThese attacks are typically launched from compromised websites or through malicious advertisements,\u201d warned Constantin.<\/p>\n

If you\u2019re not sure whether a popup alert claiming to be from Adobe is real or fake, take a look at our handy security\u00a0tips on how to safely install and update Adobe Flash.<\/a><\/p>\n

Affected software versions \u2014 which are out of date and vulnerable to attack \u2014 include the following:<\/p>\n

\"Vulnerable<\/p>\n

Adobe\u2019s security bulletin describes the vulnerabilities patched in these updates as follows:<\/p>\n