Adobe Flash Player Update Released

Last Updated: 05/07/2012

Security Notice Level

SEVERE

Adobe has released an update that addresses vulnerabilities in Adobe Flash Player for Windows, Macintosh, Linux, Solaris, and Android. Systems that are not updated are vulnerable to a crash and potentially allowing a malicious user to take control of the affected system.

Adobe reports that the vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message. The exploit targets Flash Player on Internet Explorer for Windows only.

The IT Security Office advises users update and exercise caution to avoid clicking on links delivered in email.

Affected Software

  • Adobe Flash Player 11.2.202.233 and earlier versions for Windows, Macintosh and Linux operating systems
  • Adobe Flash Player 11.1.115.7 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.8 and earlier versions for Android 3.x and 2.x

Additional Information

Security bulletin names:
APSB12-09 Security update available for Adobe Flash Player
Released: May 4, 2012

Additional information about this vulnerability can be viewed at: http://www.adobe.com/support/security/bulletins/apsb12-09.html

If you have any questions, please contact the IT Service Center at 303-735-4357 (or 5-HELP from an on-campus phone) or help@colorado.edu. Phone help is available Monday through Friday from 8 a.m. to 7 p.m.