Adobe Emergency Flash Patch Available

Published on February 8, 2013 By DrJBHL In Personal Computing

To fix vulnerabilities in its Flash player in both Windows and Apple systems, Adobe has published a patch for:

“The first vulnerability, CVE-2013-0633, tricks users into downloading a Microsoft Word document sent via e-mail. As you might expect, the document contains malicious SWF (flash’s file extension) content that can then infect a user’s system. This exploit targets the ActiveX version of Flash Player for Windows, Adobe said.

The second exploit, CVE-2013-0634, targets Firefox and Safari users on Mac OS X by directing users to Websites containing malicious Flash content. This vulnerability is also being used against Windows users in a similar manner to the first exploit. Namely, malicious documents delivered via e-mail.”

- http://www.macworld.com/article/2027624/adobe-releases-emergency-patch-for-windows-and-os-x-systems.html#lsrc.twt_macworld

The easiest way for W7 users to get the patched version is to visit here:

http://get.adobe.com/flashplayer/?no_redirect

But make sure to uncheck the box (if you don’t want the scan):

The easy way to check is to go here:

http://www.adobe.com/software/flash/about/

“If you see an animation at the top of the page, that means you have Flash installed in your browser. Underneath the animation, you’ll see a little box dubbed “Version Information” telling you which version of Flash you currently have. Compare that number to the chart right below the version information box to make sure you’re up to date.” – pcworld

Like this:

For W8 users:

“Windows 8 users need to open Windows Update by pressing the Windows Key + C to open the Charms Bar. Next, click the search icon at the top and type “update.” Next, click “Settings” right below the text entry box and then select “Check for updates” in the main window.

Windows 8 users needing to manually update another browser such as Firefox can also download updates directly from Adobe. Chrome users receive updates automatically in the background.”

- http://www.macworld.com/article/2027624/adobe-releases-emergency-patch-for-windows-and-os-x-systems.html#lsrc.twt_macworld

IE 9 should update automatically as should Chrome and Mozilla/Pale Moon. The automatic update is set that way as a default. Make sure you haven’t changed that.

According to the source, btw… there’s a monster “Patch Tuesday” coming with 12 security updates for 57 vulnerabilities. Adobe will patch Reader and Acrobat.

Btw, if you aren’t running EMET (MS’s Mitigation Tool, it’s recommended to do so).

Source:

http://www.macworld.com/article/2027624/adobe-releases-emergency-patch-for-windows-and-os-x-systems.html#lsrc.twt_macworld

http://laws.qualys.com/2013/01/january-2013-patch-tuesday.html

Comments

alaknebs

on Feb 08, 2013

very odd.. don't remember updating flash lately... and it's on the latest version already? must be some sort of silent update

teddybearcholla

on Feb 08, 2013

alaknebs

on Feb 14, 2013

there's another one today. 11.6.602.168... where i had to actually go and d/l.... must have misremembered about not d/ling the previous one... odd stuff... (either that.. or sub.sub versions 11.x.x are auto and sub versions 11.x aren't)

---

pretty stupid to have to d/l both plugin and activex versions...

Daiwa

on Feb 15, 2013

Usually updates on the fly so it seemed odd indeed that it took you to a download page, but the website is an adobe subdomain and once installed it pops open the adobe 'installation successful' secure website. Was also a little suspicious of the graphics of the 'installation completed' screen - the text of the 'Finish' button was positioned above center, not the usual 'fit & finish' I typically see with the Flash update dialogs but it appears the thing is legit. Ran MWB after installation and came up clean.

Uvah

on Feb 18, 2013

alaknebs

reply 3

11.6.602.168..

Today while at Crossroads I downloaded and installed the latest Flash update. Everything went fine until I got home and booted up my laptop. Twice it got stuck on the welcome screen and went no further so I did a restore back to yesterday and now all is fine. Anyone else have this problem? This is a first for me.

DrJBHL

on Feb 18, 2013

Don't know what "Crossroads" is, Uvah. If it's a public Wi-Fi spot, you might want to scan your machine really well - especially if you aren't browsing virtually in such places.

I haven't heard of any problems such as you are describing.

It might just have been a borked downlownload/installation.

Uvah

on Feb 18, 2013

Crossroads is a day room type place and the only secure net connection other than the library. May have been a borked dl or install but just to play it safe I ran a full system scan that came back negative.

alaknebs

on Feb 19, 2013

i d/l my flash from

http://www.adobe.com/software/flash/about/

as opposed to the flash update message that bounced up when the machine booted up and said there's an update... and then took me to some adobe site.

Welcome Guest! Please take the time to register with us.
There are many great features available to you once you register, including:

Richer content, access to many features that are disabled for guests like commenting on the forums.
Access to a great community, with a massive database of many, many areas of interest.
Access to contests & subscription offers like exclusive emails.
It's simple, and FREE!