November 06, 2008

Adobe patches older version of Flash for six flaws

Adobe on Wednesday made available a new version of Flash Player 9 to correct six vulnerabilities that could allow attackers to bypass security controls and take control of a user's machine.

The fixes -- made in version 9.0.151.0 -- address flaws that could lead to a variety of hacker attacks, including cross-site scripting, DNS rebinding and HTML injection, according to an Adobe bulletin.

Adobe, however, is encouraging users to upgrade to Flash Player 10, released Oct. 15 and not affected by any of the latest vulnerabilities.

In addition, Adobe on Thursday pushed out a hot fix for a bug in ColdFusion, a server and software language used to develop applications, similar to ASP.NET or PHP.

This is the second major Adobe update of the week. On Monday, the company delivered a new version of Adobe Reader and Acrobat 8 to square off a number of critical vulnerabilities that could allow an attacker to take remote control of an infected computer.

Related Articles
Related Topics
Related Links

Sign up to our newsletters

More in News

Bitcoin mining botnet has become one of the most prevalent cyber threats

Fortinet researchers have tracked 100,000 new ZeroAccess trojan infections per week, making the botnet very lucrative to its owners.

House Intelligence Committee OKs amended version of controversial CISPA

House Intelligence Committee OKs amended version of controversial ...

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help in ID'ing alleged hackers

Judge rules hospital can ask ISP for help ...

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.