Sharing is caring!

Since February 2016, Adobe has frequently updated its Flash Player in order to fix all the security issues that this application has. Unfortunately, there are still a good amount of fixes that the company needs to do for this application. However, Adobe has surprised us all, as after releasing the last monthly patch, it didn’t include a patch/update for the Flash Player.

As most of you already know, big companies such as YouTube have already ditched the Flash Player for the new HTML5 which is more secure than the old player developed by Adobe. We are not sure why the company didn’t release a new update/patch for its Flash Player, but this might mean that it realized that it realized that it can’t “save” this application, as the HTML5 is way more secure and powerful than it, so it decided to just leave it.

A few months ago, we’ve told you that it is just a matter of time until the HTML5 will be adopted by a good amount of websites. Well, if Adobe truly gave up on its Flash Player, this would happen faster than we expected.

We remind you that last month Adobe has patched over 50 vulnerabilities in Flash Player and most of them could allow remote control execution. However, this month, the company has released only some hot fixes for 4 flaws that have been discovered in Adobe Experience Manager.

The Adobe Experience Manager is an application used for content creation and publication. In addition, you can also use it to customize certain design and site components.

According to Adobe, the version 5.6.1, 6.0, 6.1 and 6.2 have been affected on Windows, Linux, Mac OS X and Unix machines. The company said that all four vulnerabilities are severe, and two of them could be used in cross-site scripting attacks (CVE-2016-4170 and CVE-2016-4168), while the CVE-2016-4253 bug could allow information disclosure. The CVE-2016-4169 bug was allowing unprivileged users to audit logs. However, Adobe said that it is not aware of any public attacks against these four vulnerabilities.