Adobe confirms ‘critical’ vulnerability in latest version of Flash Player; fix coming week of October 19

Adobe Flash

For Mac users out there that have Adobe’s Flash Player installed on their machine, the company has recently posted a security notice regarding the latest version of the player.

That notice is in regards to a “critical” vulnerability that the company has discovered, which affects the latest version of the software, version 19.0.0.207. According to Adobe, the vulnerability has already been used in “limited, targeted attacks,” and it could cause system crashes or even allow attackers to “take control” of a system where the software is installed.

The vulnerability has been labeled CVE-2015-7645. Adobe has marked it critical, which is the highest rating a vulnerability can attain on Adobe’s Severity Rating System. According to the company, it is “A vulnerability, which, if exploited would allow malicious native-code to execute, potentially without a user being aware.”

According to the company, a fix is in the works, and they plan on releasing it the week of October 19.

At this stage, the safest bet for users that might be worried about an attack, or having vulnerable software on their computer, is to remove Adobe’s Flash Player from your system altogether. For its part, Adobe has a guide to remove the software from OS X, which can be found here.

This vulnerability is an issue for Windows, OS X, and Linux users. The full security bulletin can be found through the Adobe link below.

[via 9to5Mac; Adobe]