New Windows update fixes critical security flaw in Adobe Flash Player


Radu Tyrsina
by Radu Tyrsina
Founder & Editor-in-Chief
Loading Comments

Microsoft may have already decided to delay its February patches for one month, but the decision did not stop the software giant from rolling out critical security fixes for Adobe Flash Player on Windows. Adobe released the Flash Player patches last week to address flaws that could potentially help attackers remotely execute malicious code.

Identified as MS17-005, the new security bulletin contains critical patches for Windows 8.1, Windows RT 8.1, Windows 10 and Windows Server 2016. Meanwhile, the patch is rated moderate for Windows Server 2012 and Windows Server 2012 R2. Microsoft rolled out the patches via Windows Update since the Flash Player on those versions of the operating system comes bundled with the Internet Explorer 11 and Edge browsers by default. Here is the full change log:

Operating SystemComponentAggregate Severity and ImpactUpdates Replaced           
Windows 8.1
Windows 8.1 for 32-bit SystemsAdobe Flash Player
(4010250)
Critical
Remote Code Execution
3214628 in MS17-003
Windows 8.1 for x64-based SystemsAdobe Flash Player
(4010250)
Critical
Remote Code Execution
3214628 in MS17-003
Windows Server 2012 and Windows Server 2012 R2
Windows Server 2012Adobe Flash Player
(4010250)
Moderate
Remote Code Execution
3214628 in MS17-003
Windows Server 2012 R2Adobe Flash Player
(4010250)
Moderate
Remote Code Execution
3214628 in MS17-003
Windows RT 8.1
Windows RT 8.1Adobe Flash Player
(4010250)[1]
Critical
Remote Code Execution
3214628 in MS17-003
Windows 10
Windows 10 for 32-bit SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003
Windows 10 for x64-based SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003
Windows 10 Version 1511 for 32-bit SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003
Windows 10 Version 1511 for x64-based SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003
Windows 10 Version 1607 for 32-bit SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003
Windows 10 Version 1607 for x64-based SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003
Windows Server 2016
Windows Server 2016 for 64-bit SystemsAdobe Flash Player
(4010250)[2]
Critical
Remote Code Execution
3214628 in MS17-003

Alongside Microsoft, Adobe usually delivers its patches on Patch Tuesday which happens once every month. However, Microsoft put off this month’s event until March due to an undisclosed issue, making the sudden release of the Flash Player patch a bit surprising.

RELATED STORIES YOU NEED TO CHECK OUT: