Adobe Flash Player Zero-Day Vulnerability

Last Updated: 07/20/2016

Security Notice Level

SEVERE

Adobe has released a security advisory for an Adobe Flash Player zero-day vulnerability. This vulnerability could cause a system to crash and/or potentially allow an attacker to take control of the affected system.       

Affected Software

Adobe Flash Player 9 through 18.0.0.204

Solution

The IT Security Office recommends updating to the most current version of Adobe Flash Player.  Until Adobe releases a patch for this vulnerability, please exercise caution when visiting websites.

CU Boulder’s DDS (Dedicated Desktop Support) PC customers will automatically receive the new patch.  DDS Mac customers will need to perform the following steps:

  1. Open system preference from the Apple menu.
  2. Then selecting the Flash Player icon.
  3. Select the updates tab.
  4. Select ‘Allow Adobe to install updates (recommended)’
  5. Click the ‘Check Now’ button if available.

Security Bulletin Name

  • APSA15-04 - Adobe Flash Player
  • APSB15-16 - Adobe Flash Player

Additional Information

Additional information about this vulnerability can be viewed at:

https://helpx.adobe.com/security/products/flash-player/apsa15-04.html
https://helpx.adobe.com/security/products/flash-player/apsb15-16.html

If you have any questions, please contact the IT Service Center at 303-735-4357 (or 5-HELP from an on-campus phone) or help@colorado.edu.