Adobe Flash Player 11.8.800.168
Report ID: AD201309001
Date Published: 12 September 2013
Criticality: Critical
Compromise Type: application-crash
Compromise From: remote
Affected Product/Component:
Adobe Flash Player 11.8.800.94 for Windows and Macintosh
Adobe Flash Player 11.2.202.297 for Linux
Adobe Flash Player 11.1.115.69 for Android 4.x
Adobe Flash Player 11.1.111.64 for Android 3.x and 2.x
Adobe AIR 3.8.0.870 for Windows and Android
Adobe AIR 3.8.0.910 for Macintosh
Adobe AIR 3.8.0.870 SDK & Compiler for Windows
Adobe AIR 3.8.0.870 SDK & Compiler for Macintosh
Summary
Adobe Flash Player version 11.8.800.168 has been released to address multiple vulnerabilities found in the prior version of the product.
Detailed Description
Adobe has released Adobe Flash Player 11.8.800.168, which carries out fixes for multiple vulnerabilities found in the prior version of the products. Four vulnerabilities in total were reported, each of which could cause the application to terminate unexpectedly and potentially allow an attacker to take control of the affected system.
All identified issues have been fixed in the latest update. Users are recommended to get the latest version of Adobe Flash Player onto their system as a protection measure against exploit attempts.
CVE Reference
CVE-2013-3361, CVE-2013-3362, CVE-2013-3363, CVE-2013-5324
Solution
Update to the latest version of applicable product, available from the Flash Player Download Center
F-Secure Health Check
F-Secure's free tool, the Health Check, detects if your system is missing the patch for the vulnerabilities covered in this report.
