February 5, 2014 at 14:12Vulnerability Flash Player CVE-2014-0497 exploited in-the-wild
Adobe has released an unscheduled update to APSB14-04 for Flash Player that closes CVE-2014-0497. An exploit for this vulnerability is used by attackers to deliver malicious code (Remote Code Execution).
Microsoft, in turn, announced the unscheduled update for Internet Explorer 10 & 11 on Windows 8-8.1-RT 8.1. These browsers are updated automatically (Windows Update) with the release of the corresponding version of Flash Player. The Google Chrome browser also updates automatically when a new version of Flash Player is released. For other browsers, the distribution of the new version can be downloaded here .
UPD : ESET antivirus products detect an exploit for vulnerabilities like SWF / Exploit.CVE-2014-0497.A .
Thus, the following versions of Adobe Flash Player are relevant for browsers.
We recommend that users install the update as soon as possible. You can check the version of Flash Player used by your browser.here .
Adobe is aware of reports that an exploit for this vulnerability exists in the wild, and recommends users apply the updates referenced in the security bulletin.
Microsoft, in turn, announced the unscheduled update for Internet Explorer 10 & 11 on Windows 8-8.1-RT 8.1. These browsers are updated automatically (Windows Update) with the release of the corresponding version of Flash Player. The Google Chrome browser also updates automatically when a new version of Flash Player is released. For other browsers, the distribution of the new version can be downloaded here .
UPD : ESET antivirus products detect an exploit for vulnerabilities like SWF / Exploit.CVE-2014-0497.A .
Thus, the following versions of Adobe Flash Player are relevant for browsers.
We recommend that users install the update as soon as possible. You can check the version of Flash Player used by your browser.here .