Adobe Flash Vulnerabilities Plugged in Security Update
Adobe updates its Flash software to patch several security issues, including a vulnerability being exploited by attackers. Among the vulnerabilities being patched are flaws in Microsoft's Active Template Library, which was used by Adobe during its development process.Adobe issued a patch to cover several security holes in its Flash Player software July 30, including a memory corruption issue that has been targeted by hackers. All together, the update fixes 12 vulnerabilities. The most critical among them is the memory corruption bug, which is believed to have been exploited by hackers since early July via specially crafted PDF or SWF files. To exploit the vulnerability, attackers took to drive-by downloads on compromised sites.
The problem exists in current versions of Flash Player (v220.127.116.11 and v10.0.22.87) for Windows, Macintosh and Linux operating systems. The issue also exists in the authplay.dll component that ships with Adobe Reader and Acrobat v9.x for Windows, Macintosh and Unix operating systems as well.