From InfoWorld: Adobe has rolled out a mammoth security update for Flash, Reader, and Acrobat, but be prepared for another emergency update next week to fix the new zero-day vulnerability.
Adobe released 69 security patches as part of its regularly scheduled update cycle on Tuesday fixing multiple vulnerabilities in Flash, Reader, and Acrobat. In that update, Adobe fixed 13 Flash flaws that could lead to information disclosure and remote code execution. While these updates should be applied immediately, administrators should remain on guard because attackers are currently exploiting a zero-day vulnerability affecting all versions of Flash Player, even the latest one.
Adobe has the proof of concept for the vulnerability and promised an emergency update next week.
"Adobe is aware of a report that an exploit for this vulnerability is being used in limited, targeted attacks. Adobe expects to make an update available during the week of October 19," the company said in its advisory.
View: Article @ Source Site
