A responsibly disclosed critical vulnerability currently being exploited in the wild. Adobe have released a level 1 critical out of band update to address the flaw, which is cross platform. You only need to visit a website and view a malicious Flash file, and your system is open to remote code execution. The bug is unrelated to the critical IE flaw (which coincidentally also requires a Flash file to execute to enable the vulnerability in IE to be exploited).
Fire up the updaters if you haven't already. Flash auto update doesn't seem to check that regularly so it's definitely worth a manual refresh to be safe.
Source: Sophos Naked Security.
Fire up the updaters if you haven't already. Flash auto update doesn't seem to check that regularly so it's definitely worth a manual refresh to be safe.
Source: Sophos Naked Security.