In what is sadly a regular occurrence, Adobe has released another critical Flash Player security update to address holes that could allow a bad guy to take control of a Mac, Windows, Linux, or Chrome OS machine.
Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address a critical vulnerability that could potentially allow an attacker to take control of the affected system.
Adobe is aware of a report that an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10.
Adobe has applied its highest severity rating to the fix, (Priority 1), meaning all affected users should immediately update their Player to the latest available version, either via the built-in update mechanism, or via the Adobe Download Center.
While “limited, targeted attacks” are currently being only being targeted at Windows 7 and later machines, Mac users are still vulnerable, and should update their machines.
Affected versions of Flash Player for Mac:
- Adobe Flash Player version 23.0.0.185 and earlier
- Adobe Flash Player for Google Chrome version 23.0.0.185 and earlier
If you are a Mac user with Flash Player 11.3.x or later installed, and have “allow Adobe to install updates,” enabled, your Player should updateautomatically. The same goes for users of the Google Chrome browser for Mac, which should update its Flash Player automatically.
Of course you could always just disable the Flash plug-in for whichever browser you use. But, there’s always that one porn site educational website, that you love and visit almost hourly, that refuses to update its video content to HTML5, so…
