Adobe to release zero-day Flash vulnerability patch next week
Adobe expects to be able to roll out a patch in the week of October 19 that will close the critical vulnerability in the latest version of Flash Player for Windows, Mac and Linux. According to Adobe, the vulnerability is being exploited on a small scale.
The company acknowledges in the Adobe Security Bulletin the existence of the vulnerability in Flash Player 19.0.0.207 and older versions for Windows, Macintosh and Linux. The leak was discovered by Peter Pi of Trend Micro and is said to be exploited in Operation Pawn Storm, a hacker attack targeting politicians and government agencies.
The exploit allows attackers to crash systems and potentially take control of devices. It is not yet known when Adobe will release the patch. The software maker says it expects the update to be ready in the week of October 19.