Printed from

Adobe issues 'critical' patch for Flash for AIR, OS X, Windows, Linux

updated 01:00 am EDT, Wed July 9, 2014

Flaw allows attackers to steal authenticating cookies, hasn't been seen in wild yet

Adobe has issued an emergency patch of its Flash Player technology to correct a security flaw that could allow hackers false access to thousands of popular websites -- notably Twitter, Instagram, Tumblr and eBay among many others. The patch, which will update Flash to version, is considered "critical" for users of OS X, Windows and Linux operating systems. Even if users have Flash Player disabled in their browser, they may still need to update if they are using any products that require Adobe AIR.

The updated version number for Linux users is Adobe Flash Player Users of Google Chrome and Internet Explorer versions 10 or 11 on Windows will have the Flash versions automatically updated when they update to the latest version of those browsers. The company advises that developers using the Adobe AIR SDK and Compiler should update to Adobe AIR version of those tools, along with users of Adobe AIR for Android. Flash technology doesn't work on iOS devices, and therefore iPad, iPhone and iPod touch owners don't need to do anything for those devices.

The flaw affects previous versions of Flash Player as well, so the software should be disabled entirely on machines too old or running older operating systems that can't update to at least version, which Adobe has made available specifically for older machines and OS versions. Macs running OS X 10.6.x or later, or PCs still on Windows XP or later, should be able to update to either the aforementioned or the latest version of Flash, which fixes the issue.

Affected websites are also attacking the vulnerability from their end, even though no known instances of attack through this vector has been seen "in the wild" as of yet. The flaw was found to allow hackers to steal the "cookie" used by many websites off of users' computers, allowing the attacker to login to the website as the just-departed user and take control of the account on that website.

By Electronista Staff
Post tools:




  1. Jeronimo2000

    Forum Regular

    Joined: 08-20-01

    "Flash: Patching the unpatchable since 1997."

  1. climacs

    Dedicated MacNNer

    Joined: 09-06-01

    for cereal

  1. nouser

    Fresh-Faced Recruit

    Joined: 04-29-12

    Really... a critical flaw in Flash? Shocking!

  1. climacs

    Dedicated MacNNer

    Joined: 09-06-01

    I know, right? Hoocoodanode?

  1. Flying Meat

    Dedicated MacNNer

    Joined: 01-25-07

    Someone please just put it out of our misery. ;)

  1. JackWebb

    Fresh-Faced Recruit

    Joined: 08-31-07

    Chances of this version also having a security flaw: 99.999%

Login Here

Not a member of the MacNN forums? Register now for free.


Network Headlines


Most Popular


Recent Reviews

Moshi iVisor AG and XT for iPad Air 2

Have you ever tried to put in a screen protector that relies on static to cling to the screen? How many bubbles and wrinkles does it h ...

Epson PowerLite Home Cinema 3500 projector

Trying to find the perfect projector for a home theater can be tricky, as there are bountiful options on the market from a large numbe ...

Thecus N2310 NAS

For every computer user, there comes a point of critical mass in data storage. When it hits, external hard drives, USB sticks and DVD ...



Most Commented


Popular News