Adobe expects Flash flaw fix today
Adobe has said it expects to fix a critical vulnerability in Flash today, a week ahead of schedule.


Adobe expects to fix a critical Flash Player vulnerability today, a week before it had planned to issue a patch.
Alarm bells were ringing last week when reports emerged the flaw was being actively exploited in the wild against Adobe Flash on Windows.
An update for Flash on the Windows, Macintosh, Linux, Solaris and Android operating systems is now due to be issued today.
Google Chrome users can already protect themselves by updating to version 6.0.472.62 of the browser.
The same vulnerability exists in Adobe Reader 9.3.4 for Windows, Macintosh and UNIX, as well as Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh.
Adobe said it expects to fix the problem in those software models during the week starting 4 October, although it has not been made aware of any attacks exploiting the vulnerability in Reader or Acrobat.
Chester Wisniewski, senior security advisor at Sophos Canada, said Adobe had most likely moved the update forward because the vulnerability had been exploited in the wild.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
"Stay tuned for information on the upcoming Adobe fixes. They will be very high priority and I recommend planning your deployment of these fixes as soon as possible," Wisniewski added in a blog post.
Tom Brewster is currently an associate editor at Forbes and an award-winning journalist who covers cyber security, surveillance, and privacy. Starting his career at ITPro as a staff writer and working up to a senior staff writer role, Tom has been covering the tech industry for more than ten years and is considered one of the leading journalists in his specialism.
He is a proud alum of the University of Sheffield where he secured an undergraduate degree in English Literature before undertaking a certification from General Assembly in web development.
-
The IT industry’s shift to circular, low-carbon solutions
Maximize your hardware investment and reach your sustainability goals with HP’s Renew Solutions
-
Lenovo ThinkPad X9 14 Aura Edition review
Reviews This thin and light ultraportable will draw you in with its vibrant screen – but it isn't as powerful as some of its competitors
-
Hackers are targeting Ivanti VPN users again – here’s what you need to know
News Ivanti has re-patched a security flaw in its Connect Secure VPN appliances that's been exploited by a China-linked espionage group since at least the middle of March.
-
Broadcom issues urgent alert over three VMware zero-days
News The firm says it has information to suggest all three are being exploited in the wild
-
Nakivo backup flaw still present on some systems months after firms’ ‘silent patch’, researchers claim
News Over 200 vulnerable Nakivo backup instances have been identified months after the firm silently patched a security flaw.
-
Everything you need to know about the Microsoft Power Pages vulnerability
News A severe Microsoft Power Pages vulnerability has been fixed after cyber criminals were found to have been exploiting unpatched systems in the wild.
-
Vulnerability management complexity is leaving enterprises at serious risk
News Fragmented data and siloed processes mean remediation is taking too long
-
A critical Ivanti flaw is being exploited in the wild – here’s what you need to know
News Cyber criminals are actively exploiting a critical RCE flaw affecting Ivanti Connect Secure appliances
-
Researchers claim an AMD security flaw could let hackers access encrypted data
News Using only a $10 test rig, researchers were able to pull off the badRAM attack
-
96% of SMBs are missing critical cybersecurity skills – here's why
News The skills shortage hits SMBs worse as they often suffer from a lack of budget and resources