Adobe Issues Security Patch for Two Zero-Day Bugs in Flash Player

The company released updates for Adobe Flash Player 11.5 and earlier versions for Windows and Macintosh, Adobe Flash Player 11.2 and earlier versions for Linux, Adobe Flash Player 11.1 and earlier versions for Android. Adobe rushed a security fix for two Flash Player vulnerabilities currently exploited in the wild.

The two bugs included already in exploit packs are used by crooks to download malware on the compromised devices. One of them targets both Mac OS X and Windows systems.

The company released updates for Adobe Flash Player 11.5 and earlier versions for Windows and Macintosh, Adobe Flash Player 11.2 and earlier versions for Linux, Adobe Flash Player 11.1 and earlier versions for Android.

In the official security bulletin, Adobe reports that “CVE-2013-0634 is being exploited in the wild in attacks delivered via malicious Flash (SWF) content hosted on websites that target Flash Player in Firefox or Safari on the Macintosh platform, as well as attacks designed to trick Windows users into opening a Microsoft Word document delivered as an email attachment which contains malicious Flash (SWF) content.”

About the second bug, CVE-2013-0633, Adobe reports that “it is used in attacks meant to con users into opening a Microsoft Word document delivered as an email attachment which contains malicious Flash (SWF) content. The exploit for CVE-2013-0633 targets the ActiveX version of Flash Player on Windows.”

To check what version of Flash your browser is running, click here. And to grab your update, click here. Don`t hesitate! The security of your data is at stake.