Number: AV16-174
Date: October 26 2016
Purpose
The purpose of this advisory is to bring attention to the recently released security update for Adobe Flash Player.
Assessment
Adobe has released Security Bulletin APSB16-36 to address critical vulnerabilities that could allow an attacker to take control of the affected system.
Affected software versions:
- Adobe Flash Desktop Runtime 23.0.0.185 and earlier versions for Windows and Macintosh.
- Adobe Flash Player for Google Chrome 23.0.0.185 and earlier versions of Windows, Macintosh, Linux and Chrome.
- Adobe Flash Player for Microsoft Edge and Internet Explorer 11 23.0.0.185 and earlier for Windows 10 and 8.1.
- Adobe Flash Player for Linux versions 11.2.202.637 and earlier.
CVE References: CVE-2016-7855
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References:
https://helpx.adobe.com/security/products/flash-player/apsb16-36.html