Adobe has issued a security bulletin for a zero-day Flash exploit discovered just a few days ago, acting with unusual rapidity to issue an update to Flash Player for a vulnerability that “is being exploited in the wild in targeted attacks via a malicious Web page, or a Flash (.swf) file embedded in a Microsoft Word (.doc) or Microsoft Excel (.xls) file delivered as an email attachment, targeting the Windows platform.”
This update affects Flash Player, and also Adobe Air. If, however, you use Google’s Chrome browser, it was updated on Thursday, as Google manages their own Flash distribution.
You can download the latest version of Flash Player here, and you can download Adobe Air here.