Microsoft’s Windows XP Service Pack 3 (SP3) includes an older version of Adobe’s Flash Player that’s vulnerable to recently-spotted attacks.
Windows XP SP3 includes Flash Player 184.108.40.206, a version released by Adobe Systems Inc. in December 2007. That version of Flash Player, however, was superseded by Version 220.127.116.11 on April 8, nearly two weeks before Microsoft decided SP3 was done by giving it a release to manufacturing (RTM) label and sending it out for distribution.
Adobe has confirmed that version 18.104.22.168, included with XP SP3, is vulnerable to the ongoing attacks, which have originated from Chinese servers. Users have been attacked after visiting legitimate Web sites that had been hacked using now-common SQL-injection attacks.
Late Monday, Microsoft declined to answer questions about Flash, including why it wasn’t able to add the newest version to XP SP3 and what advice it would give users.
Source: ComputerworldFiled under Enterprise Software | Tags: Adobe, Flash, Service Pack 3, Windows XP | Comment Below