Adobe patches Hacking Team Flash zero-days, update immediately!

Adobe has released new versions of Flash Player, Shockwave Player and Acrobat and Reader, all of which fix critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

At the moment, the Flash Player update is the most important, as exploit code for the two zero-days it patches has been leaked online, and one of them is actively leveraged by the popular Angler exploit kit.

Flash Player users are advised to update as soon as possible, if they have not already decided to stop using it by disabling it in their browser and uninstalling it from their computer altogether (instructions can be had here: Windows, OS X).

Enabling the “click-to-play” option in the browser is also a solution for those who haven’t yet decided to ditch Flash Player for good.

Mozilla, which has started blocking vulnerable versions of Flash by default in Firefox, will likely soon reverse the decision for this latest version.

Share this