Adobe releases fix for actively exploited Flash Player zero-day

2018-06-08 16:34

If you’re still using Flash Player, it’s time to update it again – and quickly: Adobe has just patched a critical zero day vulnerability (CVE-2018-5002) actively exploited in the wild. The attacks are “limited, targeted attacks against Windows users,” but updates (v30.0.0.113 for all platforms) are available for Adobe Flash Player for Windows, macOS, Linux and Chrome OS. About CVE-2018-5002 and the attacks It is a stack-based buffer overflow vulnerability that has been independently discovered … More → The post Adobe releases fix for actively exploited Flash Player zero-day appeared first on Help Net Security.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/Uc3xiRstIRE/

#adobe #flash #zeroday #CVE-2018-5002

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-09	CVE-2018-5002	Out-of-bounds Write vulnerability in multiple products Adobe Flash Player versions 29.0.0.171 and earlier have a Stack-based buffer overflow vulnerability. network low complexity adobe apple linux microsoft google redhat CWE-787 critical	10.0

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Adobe		166	68	2154	953	2112	5287