A Flash Player vulnerability is currently being exploited in Windows IE, according to Adobe Systems, who makes the program. They refer to the problem as critical vulnerability, and are asking Windows users to update their software as soon as possible.
According to Adobe, the security problem is currently being used by hackers to hijack Windows PCs. “There are reports that the vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message. The exploit targets Flash Player on Internet Explorer for Windows only,” stated Adobe in a security bulletin.
While there is no word on current attacks on Mac, Android or Linux operating systems, the vulnerability exists in those as well, and Adobe as updates for those systems too.
Adobe is recommending that users of Flash Player 22.214.171.124 and before for Windows, Mac, or Linux, update to Flash Player 126.96.36.199. Adobe offers a page on their site that provides a lookup for the existing version on a machine and provides updates if needed. It is here.
Adobe notes that users of the most recent versions of Flash Player for Windows, and users of Google’s Chrome browser, will have been updated automatically.