July has been a fairly poor month for
Adobe Flash Player security, to say the least. Three separate zero-day vulnerabilities (all courtesy of the Hacking Team dump) have left many people concerned about Flash security, with many (including this blog) calling for it to
go away.
Some sort of reaction from Adobe to improve Flash security was inevitable. The recent version of Flash, version (18.0.0.209), includes several
additional mitigation techniques. These were developed by
Adobe, working together with Google’s Project Zero.
