Since the discovery of flaws in the previous update of Adobe Flash Player and the patch to ensure zero-day vulnerability a couple of weeks ago, Adobe launched the latest Flash Player security update. This includes patches for nine vulnerabilities that poses a threat to users. With these vulnerabilities, the host system is exposed to remote code execution and making it possible to hackers to access pertinent information.
It will be recalled that the most recent Adobe update version 184.108.40.206 and the earlier versions included security vulnerabilities on Mac and Windows, Google Chrome, Internet Explorer on several Windows versions as well as Microsoft Edge.
The “zero bugs” were discovered on October 21 by the security team of Google and five days after, Adobe came up with the update on the Adobe Flash Player. Microsoft, on the other hand has not yet made fixes to the bug. The software giant also mentioned that the disclosure of Google was too early. Their sentiments included the belief that the fixes done with the patches from Adobe are ample enough to get the situation under control and that Google should have waited for the Microsoft update before making the announcement.
However, Google follows a strict disclosure policy. It was published in 2013 and this policy gives the vendors 60 days for vulnerability patches or else, users will be publicly notified of the threats and risks of the flaws. For more critical vulnerabilities, the policy states that the concerned software vendor only has seven days to act on the problem.
Meanwhile another patch had been done on Adobe’s “Connect” for Windows software for web conferencing. The update was made to resolve a vulnerability issue that can be used by hackers to attack cross-site scripting. As a result, “Connect” users should now have the version 9.5.7.
In relation to CVE-2016-9855, the vulnerability threat has something to do with hackers being able to target a PC and run a malicious code via the Flash Player. Due to the security risks, users are advised to download Adobe Flash Player v. 220.127.116.11 and this include iPhone, Android and desktop platforms.
Every techie needs a pair of sick headphones. Neurogadget recommends these Audio Technica Professional Studio Monitor Headphones for both their quality and their cool-factor.