In its security bulletin for the vulnerability - rated as critical - Adobe said the updates for the Windows, Linux and Apple OS X versions of Flash Player "provide additional hardening" against the previous CVE-2014-8439 flaw that was patched over a month ago.
Exploit kit researcher Kafeine discovered the Flash vulnerability in the Angler set of attack tools in October this year, security vendor F-Secure said. Exploit kits are used to serve up malware to website visitors through deception as well as taking advantage of vulnerabilities.
It has since found its way into at least two more exploit kits called Astrum and Nuclear, according to F-Secure.
Update Flash asap to protect yourself against new attack
Posted on Wednesday, November 26 2014 @ 13:30 CET by Thomas De Maesschalck