Adobe has released an emergency updates for its widely used Flash Player to combat up to three vulnerabilities that exploit a previously unknown security bug being actively exploited by hackers to maliciously install malware on end-user computers. Versions 12.0.0.44 and earlier for Windows and Mac and versions 11.2.202.336 and earlier for Linux are prone to drive-by attacks that have severely affected the websites of at least three nonprofit organisations.
One of these, CVE-2014-0502, is being exploited in the wild allowing hackers to execute malicious code by overwriting the virtual function table pointer of a Flash object. In addition, two other vulnerabilities (CVE-2014-0498 and CVE-2014-0499) are equally dangerous. To counter the same, Adobe has now released Adobe Flash Player version 12.0.0.70 on Windows and Mac, while Version 11.2.202.341 for Linux.
Further, Google Chrome update Version 33.0.1750.117 comes bundled with the fixed Flash plugin. Microsoft has also released an update for Windows 8.0 and 8.1 in Internet Explorer 10 and 11.
The newest version of Adobe Flash Player can be downloaded here: Adobe Flash Player
Source: EFY Times
