Adobe Patches Clickjacking Flash Vulnerability
No user action or Flash Player update is required to fix the problem.
Adobe has fixed a security flaw in Adobe Flash that attackers could use to spy on victims via their webcam and microphone.
"Normally, cameras and microphones are disabled, and only users can turn them on," The H Security reports. "To trick users into enabling them, attackers can present a simple clicking game on a specially crafted web site."
"Adobe has now fixed the problem with an update to the Flash Player settings file hosted on Adobe's web servers," the article states. "Users do not need to update their Flash Player installations."
Go to "Adobe remedies webcam spy hole in Flash" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.