Overall, Adobe patched 75 important and critical vulnerabilities – including a flaw that could allow bad actors to steal victims’ hashed password values.
The Fallout EK has added the latest Flash vulnerability to its bad of tricks, among other tune-ups.
Firefox 69 will force users to manually install Adobe Flash as the plugin inches toward end of life.
Adobe issued a patch for the zero-day on Wednesday.
The vulnerability could lead to arbitrary code execution.
Overall, the company released only three patches as part of its regularly-scheduled November update.
Google Play’s policy prohibits apps or SDKs that download executable code, such as dex files or native code, from a source other than Google Play
Threatpost’s editors discuss the top news of this week.
A fake Adobe update actually updates victims’ Flash – but also installs malicious cryptomining malware.
Adobe issued fixes for versions of its ColdFusion web development platform – including six critical flaws.