Copy pasta of my post in the Flash thread in the Windows forum.
There's a 0-day which targets an up to date Flash (16.0.0.257)[1]. I don't know if it only targets specific versions of Flash or if they're all vulnerable (assume they all are).
The only mitigation there is as of right now is to disable Flash (e.g. click-to-play).
[1] http://arstechnica.com/security/2015/01/attack-for-flash-0day-goes-live-in-popular-exploit-kit/
There's a 0-day which targets an up to date Flash (16.0.0.257)[1]. I don't know if it only targets specific versions of Flash or if they're all vulnerable (assume they all are).
The only mitigation there is as of right now is to disable Flash (e.g. click-to-play).
[1] http://arstechnica.com/security/2015/01/attack-for-flash-0day-goes-live-in-popular-exploit-kit/
Last edited: