wiskerke Posted July 8, 2015 Share Posted July 8, 2015 This means: disable the Flash Player in your browsers. All browsers are affected. All platforms are affected. There may be an update of the Flash Player tomorrow. Yes, this means no Manage Images 2 for the moment. Alamy, maybe reinstate access to Manage Images 1.0 for everyone for a couple of days? Adobe Security BulletinSecurity Advisory for Adobe Flash PlayerRelease date: July 7, 2015Vulnerability identifier: APSA15-03CVE number: CVE-2015-5119Platform: Windows, Macintosh and LinuxSummaryA critical vulnerability (CVE-2015-5119) has been identified in Adobe Flash Player 220.127.116.11 and earlier versions for Windows, Macintosh and Linux. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. Adobe is aware of reports that an exploit targeting this vulnerability has been published publicly. Adobe expects to make updates available on July 8, 2015.Affected software versions Adobe Flash Player 18.104.22.168 and earlier versions for Windows and Macintosh Adobe Flash Player Extended Support Release version 22.214.171.1246 and earlier 13.x versions for Windows and Macintosh Adobe Flash Player 126.96.36.1998 and earlier 11.x versions for Linux To verify the version of Adobe Flash Player installed on your system, access the About Flash Player page, or right-click on content running in Flash Player and select "About Adobe (or Macromedia) Flash Player" from the menu. If you use multiple browsers, perform the check for each browser you have installed on your system. Severity ratingsAdobe categorizes this as a critical vulnerability.AcknowledgmentsAdobe would like to thank Google Project Zero and Morgan Marquis-Boire for reporting CVE-2015-5119 and for working with Adobe to help protect our customers. Over at Symantec read this: Symantec has confirmed the existence of a new zero-day vulnerability in Adobe Flash Player which could allow attackers to remotely execute code on a targeted computer. Since details of the vulnerability are now publicly available, it is likely attackers will move quickly to exploit it before a patch is issued. - Sorry I was so late with this. I had my Flash Player disabled as soon as the word was out. I only realized the impact here when I clicked on edit image just now. wim Link to comment Share on other sites More sharing options...
This topic is now archived and is closed to further replies.