Security Vulnerabilities in APSA18-01 for Adobe Flash Player
A critical vulnerability (CVE-2018-4878) exists in Adobe Flash Player 22.214.171.124 and earlier versions. Successful exploitation could potentially allow an attacker to take control of the affected system.Adobe is aware of a report that an exploit for CVE-2018-4878 exists in the wild, and is being used in limited, targeted attacks against Windows users. These attacks leverage Office documents with embedded malicious Flash content distributed via email.Adobe addressed this vulnerability in version 126.96.36.199, released on February 6, 2018. See thisbulletinfor more details.
Adobe Flash Player Active X plug-in for Internet Explorer