Security
Now Reading
KB3132372 Windows Update patches security issues in Adobe Flash Player in Internet Explorer and Microsoft Edge
2

KB3132372 Windows Update patches security issues in Adobe Flash Player in Internet Explorer and Microsoft Edge

by AshwinJanuary 1, 2016

A few days ago, we reported that Abode had found some pretty serious vulnerabilities in its Flash Player plugins, yet again.

KB3132372 Windows Update

Most users will be aware that Microsoft normally releases security updates on Patch Tuesday, but this seems to have changed on New Year’s Day.

The Redmond Company pushed out the KB3132372 Windows Update to patch up the security issues in Adobe Flash Player. This only impacts Windows 10, and the two browsers it comes with, Internet Explorer and Microsoft Edge.

The biggest problem, with both programs are that, since both Internet Explorer and Microsoft Edge are core components in the operating system, they can’t be updated in a normal state, i.e., you can’t just download a new version of Flash Player and update the version in IE or Edge.

They come with their own version of Flash plugins, which can only be updated by Microsoft. It is a bit annoying for the company to roll out the update, even after Adobe published the new version a few days earlier. The same can be said of Google Chrome, and its Pepper Flash player.

Adobe has found with the help of security researchers, that Flash Player 20.0.0.228 and earlier were vulnerable to attacks. The vulnerabilities, could potentially allow an attacker to take control of a computer. And one of these security holes, were found to have been exploited by hackers, in some limited, targeted attacks, though details of the same were not published.

The infamous plugin, has been the victim of many a dangerous vulnerability all through 2015, with some reports claiming there were over 300 bugs in Flash Player.

Adobe has fixed the recently discovered security issues in Flash Player version 20.0.0.267, which is what KB3132372 installs. It is likely that the plugin maker had urged the Redmond company to roll out the updates as soon as possible to prevent any further attacks.

And like all security related Windows updates, KB3132372 also requires you to restart the computer to finish installing the update. That’s okay though, but Microsoft’s persistent and annoying Windows Update methods (like forced updates) are sure to frustrate users, as Windows 10 no longer allows you to shutdown or restart the PC normally. Your only options are Update and Shutdown, and Update and Restart.

That being said, it may not be a bad idea for once, as it does help you stay secure online. But we think it would still be nice for Microsoft to allow users more control over Windows Updates.

Known issue in KB3132372:

Microsoft says that there are reports of some applications crashing, after installing the Update.The company is in touch with Adobe, to analyze the issue and to provide a fix

We tested it on out PC, and are yet to come across any such issue.

2 Comments
  • Bill
    January 3, 2016 at 12:09 pm

    There are major issues with this update just look on the Microsoft forum as it causes lots of programs to fail to work, it took me ages
    to find why a program stopped working on my machine.
    This fix causes more problems and needs to be sorted where have you been?

    • Ashwin
      January 4, 2016 at 12:35 pm

      I’ve seen plenty of such reports. Even the Skype forums report many issues with the update. Looks like Microsoft screwed up big time.
      But it is working for me though….baffled

Leave a Response