Adobe unleases critical patches for ColdFusion, Reader and Flash

Adobe unleases critical patches for ColdFusion, Reader and Flash

Summary: Time to patch Flash on Windows with new exploits expected in a few days.

SHARE:
TOPICS: Security
1

Adobe has released fixes for dozens of critical security flaws affecting ColdFusion, Reader, Acrobat and Flash Player.

Adobe's Patch Tuesday-synced scheduled security updates for Flash Player this month include fixes for 13 critical flaws with updates available for Windows, Mac, Linux and Android as well as updates for Adobe Air.

Flash Player version 11.7.700.202 fixes flaws in version 11.7.700.169 and earlier on Windows and Mac, while the Flash on Linux at 11.2.202.280 or below should update to 11.2.202.285.

Adobe recommends administrators update Windows with particular urgency, since exploits for the vulnerabilities affecting Flash on the platform could be expected to appear within 72 hours. Exploits for Flash on Macs are the second priority and could have working exploits in 30 days.

Flash will automatically update with the latest versions of Chrome and Internet Explorer 10 on Windows 8/RT systems.

Adobe has also released a critical hotfix for two flaws in its web application platform ColdFusion 9 and 10. It includes last week's emergency fix for a flaw that was being used to attack ColdFusion customers.

"Customers should also apply the security configuration settings as outlined on the ColdFusion Security page, as well as review the ColdFusion 9 Lockdown Guide and ColdFusion 10 Lockdown Guide," Adobe said.

A ColdFusion flaw was recently used in an attack on the Washington state court, which may have exposed as many as 160,000 Social Security Numbers.  

The update for Adobe's Acrobat and Reader products include fixes for 27 critical flaws. The highest priority update is for Acrobat and Reader 9 on Windows, which updates to 9.5.5.

Windows and Mac users running Acrobat and Reader XI (11.0.02) should update to version 11.0.03, while Windows and Mac users on Acrobat and Reader X (10.1.6) who cannot update to the latest version of XI can update to Acrobat and Reader X 10.1.7. Reader 9.5.4 on Linux should be updated to 9.5.5.

Topic: Security

Liam Tung

About Liam Tung

Liam Tung is an Australian business technology journalist living a few too many Swedish miles north of Stockholm for his liking. He gained a bachelors degree in economics and arts (cultural studies) at Sydney's Macquarie University, but hacked (without Norse or malicious code for that matter) his way into a career as an enterprise tech, security and telecommunications journalist with ZDNet Australia. These days Liam is a full time freelance technology journalist who writes for several publications.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

1 comment
Log in or register to join the discussion
  • Print to PDF crashes programs after these 'fixes' !

    Anyone else having this issue ?
    mybunkaccount@...