Tuesday, February 04, 2014, 10:50 am PT (01:50 pm ET)
Flash flaw could allow attackers to remotely control Macs and PCs, Adobe issues critical updateAdobe on Tuesday released a security update for their Flash Player to address a vulnerability that could allow an attacker to remotely take control of users' computers, an exploit that the company says has been documented in the wild.
According to Adobe, both Mac and Windows machines running Flash Player version 22.214.171.124 or earlier are susceptible to the attack. Linux users are not immune, as the bug also affects Flash Player versions 126.96.36.1995 and earlier on the platform.
Users can verify the Flash version installed on their system by visiting Adobe's About Flash Player page or right-clicking on Flash content and choosing "About Adobe Flash Player" from the contextual menu.
Windows and Mac users are urged to update to Flash Player 188.8.131.52 as soon as possible, while Linux users should install version 184.108.40.2066. Flash Player plugins installed with Google's Chrome browser or Microsoft's Internet Explorer 10 or 11 will be automatically updated, Adobe says.
The bug — assigned CVE code CVE-2014-0497 — was reported by researchers Alexander Polyakov and Anton Ivanov of Kaspersky Labs.
On Topic: Mac OS X
- Apple provides golden master candidate of OS X Yosemite to developers
- Apple releases bash patch to plug 'Shellshock' security flaw in OS X Mavericks, Mountain Lion, Lion
- Apple says most customers not vulnerable to 'shellshock,' patch coming for advanced users
- Apple announces 'AirDrop Test Fest' to flush out issues ahead of OS X 10.10 Yosemite release
- Adobe releases Photoshop and Premiere Elements 13 for Mac with new editing tools