Yes, third Adobe Flash vulnerability in just weeks
Trend Micro, who are a security firm have reported a zero day vulnerability two Adobe and has been tracking Flash Zero Vulnerability since January 14. They are working with Adobe and are trying to fix the issues.
A critical vulnerability (CVE-2015-0313) exists in Adobe Flash Player 16.0.0.296 and earlier versions for Windows and Macintosh. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below.
We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below,” Adobe said in its own advisory.
Trend Micro said it had “seen around 3,294 hits related to the exploit”. The firm is recommending users “consider disabling Flash Player until a fixed version is released”.
Adobe hasn’t specified and specific date for the patch but said it would be available this week.
