Users are advised to install security updates as soon as possible.
Yesterday, Adobe released an emergency update Flash Player, which addresses two zero-day vulnerabilities.
The manufacturer has confirmed that the underlying vulnerability used in the implementation of targeted attacks using the documents in Microsoft Word. These documents are distributed by spam mailings, when opened on the victim’s system runs the malicious SWF-content. One of the vulnerabilities in the ActiveX-focused version of Flash Player for Windows.
Adobe thanked experts from Kaspersky Lab Sergey Golovanov and Alexander Polyakov for the detection of one of the vulnerabilities.
Note that the next planned release of updates for Flash Player will be held on February 12.
We ask readers to install an update for Adobe Flash Player in no time: http://www.adobe.com/support/security/bulletins/apsb13-04.html
A detailed description of the vulnerability can be found here