While much of the IT world focused on Microsoft’s July 2007 security update Tuesday, Adobe was busy releasing some fixes of its own.
The first fix is for critical flaws in Adobe Flash Player attackers could exploit to take control of the affected system. “A malicious SWF must be loaded in Flash Player by the user for an attacker to exploit these potential vulnerabilities,” Adobe said in its advisory. “Adobe recommends all users of Adobe Flash Player 22.214.171.124 and earlier versions upgrade to the newest version 126.96.36.199, by downloading it from the Player Download Center, or by using the auto-update mechanism within the product when prompted.”
Another fix is for critical flaws in Adobe Photoshop CS2 and CS3 attackers could also exploit to take control of targeted machines. “A malicious BMP, DIB, RLE, or PNG must be opened in Photoshop by the user for an attacker to exploit these potential vulnerabilities,” Adobe said. The advisory on this one includes a set of instructions to manually update the affected programs.