Adobe Flash Player 11 ActiveX

Report · May 01, 2014

Is this version of Flash Player affected by Microsoft vulnerability CVE-2014-1776? If yes, which version do I need to mitigate the vulnerability?

Report · May 01, 2014

The Microsoft vulnerability is an Internet Explorer vulnerability. It's exploited via Flash, but the vulnerability lies in IE, and Microsoft has released an update to address it. There will be another, but they have released the first Tuesday.

That said, Flash Player 11 has several security flaws that have been addressed in 12 and now 13.

You should ALWAYS run the latest:

Report · May 01, 2014

Thank you Mike, so there is no specific patches for Adobe Flash. You should just upgrade to the latest version? Correct? If a of version Adobe that is exploited still remains on a system along with the latest Flash version do you know if you are still vulnerable?

[private information removed]

Report · May 01, 2014

Again, from all I've read, this IS NOT an Adobe Flash exploit. It's an Internet Explorer exploit, and it manifests itself through Flash. If you use Firefox, Chrome, Opera or Safari, there is NO vulnerability. That would indicate to me that the problem DOESN'T lie in the plug-in but the browser using the plug-in. Adobe doesn't make Internet Explorer, and they can't fix it or update it. Nothing they can do to Flash Player will stop the vulnerability in IE.

Most places I've read up on this say, the easiest and best thing you can do, is to stop uisng IE alotgether. Personally, I think that's GREAT advice, because I have no love of Microsoft's "problem child" browser.