A Security Advisory (APSA16-01) has been published regarding a critical vulnerability (CVE-2016-1019) in Adobe Flash Player. UPDATE: Adobe is aware of reports that CVE-2016-1019 is being actively exploited on systems running
Windows 7 and Windows XP Windows 10 and earlier with Flash Player version 184.108.40.2066 and earlier. A mitigation introduced in Flash Player 220.127.116.11 currently prevents exploitation of this vulnerability, protecting users running Flash Player 18.104.22.168 and later.
Adobe is planning to provide a security update to address this vulnerability as early as April 7. For the latest information, users may continue to monitor the Adobe Product Security Incident Response Team blog.
This posting is provided “AS IS” with no warranties and confers no rights.