Adobe has published a Security Bulletin (APSB16-18) regarding security updates that address critical vulnerabilities in Adobe Flash Player. Adobe is aware of a report that an exploit for CVE-2016-4171 exists in the wild, and is being used in limited, targeted attacks. Please refer to APSA16-03 for additional details.
Adobe has also published a Security Bulletin (APSB16-23) regarding a security update for Adobe AIR. This update resolves an untrusted search path vulnerability in the Adobe AIR installer for Windows.
Adobe recommends users update their product installations using the instructions provided in the Solution section of the relevant security bulletin.
This posting is provided “AS IS” with no warranties and confers no rights.