Security Advisory CVE-2010-1297 has been posted due to a critical vulnerability in Adobe Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems. The advisory includes the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for Windows, Macintosh and UNIX operating systems.
This vulnerability could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player, and Adobe Reader and Acrobat.
Adobe's Product Security Incident Response Team (PSIRT) has confirmed that the 8.x versions of Adobe Reader and Acrobat are not vulnerable in this instance. However, there are other vulnerabilities affecting the 8.x versions. The PSIRT also reports that the Flash Player 10.1 Release Candidate does not appear to be vulnerable.
Release date: June 4, 2010
Vulnerability identifier: APSA10-01
CVE number: CVE-2010-1297
PSIRT: Security Advisory for Flash Player, Adobe Reader and Acrobat (http://blogs.adobe.com/psirt/2010/06/security_advisory_for_adobe_re.html)
Adobe Security Advisories: Security Advisory for Flash Player, Adobe Reader and Acrobat (http://www.adobe.com/support/security/advisories/apsa10-01.html)
Mitigations:
Reports are that exploitation of the critical vulnerability in Adobe Flash player is growing rapidly. This vulnerability can also be vectored through malicious PDF files to invoke Flash. See Adobe Flash/Reader Vulnerability Mitigation Options (http://securitygarden.blogspot.com/2010/06/adobe-flashreader-vulnerability.html).
The Flash Player update is available. Direct download: http://fpdownload.adobe.com/get/flashplayer/current/install_flash_player_ax.exe
After install, verify Flash Player version for each browser installed at About Flash Player page (http://www.adobe.com/products/flash/about/).
So much for the recent Adobe Reader update. Even with all the vulnerabilities addressed in the update, it wasn't completely successful, apparently due to a feature Adobe was not willing to alter. See the complete explanation atAdobe PDF Reader "Launch" vulnerability still exploitable (http://isc.sans.edu/diary.html?storyid=9112)
Thanks for the update. :thumbsup:
But, of course, the fact that the recent update did not address every issue is not a reason to ignore the update, th Blackhats will always try and target the older versions as shown on this comment (http://isc.sans.edu/diary.html?storyid=9127) from the Internet Storm Center.
In short, get the updates offered (but always be sure to make a System Restore Point before installing anything!).