Adobe issues 'critical' update for Flash Player

Adobe on Thursday (Manila time) released a "critical" security update for its Flash Player software to address a cross-site scripting issue that it said is now being exploited. In a security bulletin, Adobe said the vulnerability affects Flash for Windows, Macintosh, Linux and Solaris, and even Android. "Critical vulnerabilities have been identified in Adobe Flash Player 10.3.183.7 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.186.6 and earlier versions for Android. These vulnerabilities could cause a crash and potentially allow an attacker to take control of the affected system," it said. The new Flash Player is version 10.3.183.10. "Critical" is the highest in Adobe's threat scale, with the lower levels being Important, Moderate, and Low. Adobe's Flash Player is widely used in Internet sites but is facing the cold treatment from Apple Inc., which discourages Flash in its devices. It is also facing a similar treatment from Microsoft, which hinted its upcoming Internet Explorer 10 will be free of plug-ins, including Flash. How to update A user can verify the version of Adobe Flash Player by accessing the About Flash Player page, or right-clicking on content running in Flash Player and select "About Adobe (or Macromedia) Flash Player" from the menu. "If you use multiple browsers, perform the check for each browser you have installed on your system," Adobe said. Windows and Mac versions have auto-updating mechanisms, it added. — TJD, GMA News