Facing mounting criticism of its Flash player, owner Adobe has reportedly put in check 2 outstanding Hacking Team Flash Player zero-day vulnerabilities, according to a report in www.threatpost.com
Adobe today released an updated Flash Player that patched CVE-2015-5122 & CVE-2015-5123, 2, use-after-free bugs uncovered & exploited by the Italian surveillance software vendor. The bugs were found as researchers had combed through the 400 GB of data stolen from Hacking Team & posted Online July 5.
Since those disclosures, 3 Flash zero days & an unpatched, publicly exploited Windows kernel privilege escalation vulnerability had emerged from the Hacking Team cache. A few days ago Mozilla had blocked all versions of Flash.
Some now predict the death of Flash coming, but a few are unhappy with that premonition, suggest some Online reports (See below).
Adobe: We REALLY are taking Flash security seriously – honest – The Register
http://news.google.com Jul 15, 2015
Facebook info security chief: ‘Death to Adobe Flash’ – Fortune
http://news.google.com Jul 14, 2015
The Death Of Flash Is Coming, And Not Everyone’s Happy – Kotaku
http://news.google.com Jul 14, 2015
•Share This•