In a recent article on Trustworthy Computing, MSFT Jeff Jones provided interesting information about vulnerabilities by vendor. Included in the report was Adobe, with Shockwave, Acrobat and Flash listed as top vulnerability contributors for Adobe in 2011.
From An Update for the Flash Player Updater « Adobe Secure Software Engineering Team (ASSET) Blog (links to CSIS report & Microsoft SIR at source):
After updating to Adobe Flash Player 11.2, the following update options will be available:
- Install updates automatically when available (recommended)
- Notify me when updates are available
- Never check for updates (not recommended)
I hope that those folks who ignore Flash Player updates select the option to install the updates automatically.
