Adobe admits critical Flash flaw
After weeks of defending Flash against criticisms from Apple, Adobe has been forced to admit the program has a critical flaw.
Adobe has come clean about a critical flaw affecting its Flash player, which is capable of crashing a machine or allowing it to be taken over.
The vulnerability has been found in the 10.0.45.2 version, as well as earlier editions across Windows, Mac, Linux and Solaris operating systems (OS), but is missing in the latest version, 10.1.
It was also found in the authplay.dll component within Adobe Reader and Acrobat 9.x for Windows, Mac and UNIX.
"There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player, and Adobe Reader and Acrobat," admitted Adobe in its latest security bulletin.
The company has yet to announce when it will be releasing a fix for the flaw but said it will update the security advisory with a timetable once it is established.
The timing of this flaw is sure to please Apple's chief executive, Steve Jobs.
There has been an ongoing war of words between the two companies due to the continued lack of support for Flash on the iPad and iPhone.
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
Jobs claimed Flash was the number one reason Macs crashed and that the program "fell short" for both power consumption and open web standards.
Adobe's chief executive Shantanu Narayen hit back with claims that Jobs' insults were a "smokescreen" for the company wanting to keep everything to themselves, but this latest security upset won't do anything to help his company's cause.
Jennifer Scott is a former freelance journalist and currently political reporter for Sky News. She has a varied writing history, having started her career at Dennis Publishing, working in various roles across its business technology titles, including ITPro. Jennifer has specialised in a number of areas over the years and has produced a wealth of content for ITPro, focusing largely on data storage, networking, cloud computing, and telecommunications.
Most recently Jennifer has turned her skills to the political sphere and broadcast journalism, where she has worked for the BBC as a political reporter, before moving to Sky News.