Adobe issues patches for two security bugs in Flash Player
Adobe has reportedly issued security patches for two security flaws in its Flash Player, that could have potentially allowed hackers to bypass security controls in the software.
The security loopholes included one bug, tracked as CVE-2014-0504, which could be exploited to read the contents of a computer's clipboard, the short-term data storage feature of the OS where information is kept during copy and paste operations.
The other vulnerability, CVE-2014-0503, could be exploited to bypass the browser's same-origin policy, an important security feature that prevents resources loaded from different domain names from interacting with each other, PC World reports.
Adobe released the Flash Player 18.104.22.168 update for Windows and Mac and Flash Player 22.214.171.1246 for Linux.
According to the report, the Flash Player plug-ins distributed with Chrome, Internet Explorer 10 on Windows 8 and Internet Explorer 11 on Windows 8.1 would be automatically updated through the respective update mechanisms of those browsers.
(Posted on 13-03-2014)