Android Flash Player Already Has Zero Day Vulnerability

IMG_1868A hacker friend once told me at a security conference that if you have Flash or Acrobat on your computer then you WILL get hacked. It seems like the latest of a LONG string of Adobe Flash Player vulnerabilities has come to plague the Android OS which just added support for Flash.

According to a Adobe spokesperson:

A critical vulnerability exists in Adobe Flash Player 10.1.82.76 and earlier versions for Windows, Macintosh, Linux, Solaris and Android operating systems. This vulnerability also affects Adobe Reader 9.3.4 for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh.

There are already reports that this vulnerability is being exploited on Adobe Flash Player but not yet targeting Android devices. Adobe is recommending that all Flash users keep their anti malware software definitions up to date until a fix comes around September 27th.

This is great right news right around when RIM is planning on finally releasing Flash for BlackBerry in the next few months. Are we going to start needing anti-malware software on our BlackBerrys to protect us from the security vulnerability that is Adobe Flash? I can assure you that BES administrators will be trigger happy to apply the “disable Flash” IT policy when the functionality comes out… RIM already releases a BES PDF distiller patch every few months to fix Adobe’s PDF vulnerabilities. Maybe it is inevitable that we will have to do the same for Flash.

via PC World

2 total comments on this postSubmit your comment!