Adobe’s Flash received quite a slap across the face when Apple decided to ditch it from their iOS, simply because Apple felt that HTML5 was the way to go when it came to interactive Web design. Well, Flash’s run was pretty good (pardon the pun) while it lasted, and Adobe has recently issued emergency patches in order to squash not one, but two critical Flash vulnerabilities that have proved to be dangerous in the wrong hands.
First, a critical Flash Player update was published today in order to fix a trio of exploits, where two of those were under active attack by hackers with malicious intentions. According to Adobe, one of these two will explicitly target Mozilla’s Firefox browser. The Flash Player sandbox was introduced in 2012 in order to keep Firefox users safe from vulnerabilities that could be opened up in Flash, and it seems that the walls have finally been breached. Adobe mentioned in a security bulletin, “Adobe is aware of reports that CVE-2013-0643 and CVE 2013-0648 are being exploited in the wild in targeted attacks designed to trick the user into clicking a link which directs to a website serving malicious Flash (SWF) content.”
Have you patched your Flash just yet? Better be safe than sorry, this.