Adobe Plash Player Heap-based buffer overflow actively exploited in the wild
Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address a critical vulnerability (CVE-2015-3113) that could potentially allow an attacker to take control of the affected system.
Adobe is aware of reports that CVE-2015-3113 is being actively exploited in the wild via limited, targeted attacks. Systems running Internet Explorer for Windows 7 and below, as well as Firefox on Windows XP are known targets.
Adobe recommends users update their software installations by following the instructions here - https://helpx.adobe.com/security/products/flash-player/apsb15-14.html