Two days ago, InfoSecHackers (ISH)
reported about the Zero-day vulnerability
in the freshly patched Adobe Flash Player
. The vulnerability was exploited in the wild by a well-known group of Russian hackers, named “Pawn Storm
,” to target several foreign affairs ministries worldwide.
The zero-day flaw allowed hackers to have complete control of the users’ machine, potentially putting all the Flash Player users at a potentially high risk.
Since then, there was no patch available to make flawed utility safe.
However, Adobe has now patched the zero-day vulnerability, along with some critical vulnerabilities whose details are yet to be disclosed.
Yesterday, the company published a post on their official security bulletin (APSB15-27
) detailing the risks associated with the zero-day and how a user can get rid of them.
The critical vulnerabilities are assigned following CVE numbers: