Adobe warns of another Flash vulnerability2016-05-12 02:41 by Daniela
Tags: Adobe, Flash
As part of its monthly Patch Tuesday security updates, Adobe has announced a new zero-day vulnerability in its Flash Player application, which is currently being exploited.
"A critical vulnerability (CVE-2016-4117) exists in Adobe Flash Player 18.104.22.168 and earlier versions," Adobe wrote. "Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2016-4117 exists in the wild."
The critical vulnerability affects Windows, Mac, Linux and Chrome operating systems. A full fix is expected to be revealed as early as 12 May.
Among the fixes issued in the latest update are some that could lead to remote code execution, others resolve memory leak vulnerabilities and information disclosure issue.
Read more -here-