Adobe Security Update for Flash Player Zero-Day

  • Post author:
  • Reading time:4 mins read

Adobe has released a critical security patch (APSB17-32) for Adobe Flash Player. This update addresses a critical type confusion vulnerability that could lead to code execution. Affects Windows, Macintosh and Linux operating systems. This vulnerability identified with CVE-2017-11292 by a vulnerability scanning tool.

A security researcher

shellcode then downloads the final payload (FinSpy).

FinFisher, also known as FinSpy, is surveillance software that


Affected versions of Adobe Flash Player Security Patch:

  1. Flash Player versions 27.0.0.159 and earlier for Windows, Macintosh, and Linux.
  2.  Flash Player version 27.0.0.159 and earlier for Adobe Flash Player for Google Chrome.
  3.  Flash Player version 27.0.0.130 and earlier for Adobe Flash Player for Microsoft Edge and
  4. Internet Explorer 11 on Windows 10 and Windows 8.x.

Solution:

All the users of the Adobe Flash Player for Windows, Macintosh, and Linux are advised to update to Flash Player version 27.0.0.170. Flash Player for Google Chrome, Microsoft Edge and Internet Explorer 11 automatically updated to the latest version.

However, all these updates easily remediated through SecPod Saner. Also, install Saner to detect and remediate these type of threats and stay secure.