After just publishing a series of patches, Adobe is patching again a new vulnerability found in the Flash Player 10.3.181.23 and earlier versions for Windows, Macintosh, Linux and Solaris, and Flash Player 10.3.185.23 and earlier versions for Android.
This time, the vulnerability has severity critical because it is a memory corruption (CVE-2011-2110) which could cause a crash and potentially allow an attacker to take control of the affected system. According to Adobe, there are reports that this vulnerability is being exploited in the wild in targeted attacks via malicious Web pages.
Because the vulnerability is actively exploited, all users are urged to update to Adobe Flash Player version 10.3.185.24 or later, which fixes this problem.
In order to download the latest version please visit http://www.adobe.com/go/getflashplayer or update your browser to the latest version in case it contains a built-in version of Adobe Flash Player.
Sorin Mustaca
Data Security Expert
Leave a reply
