Adobe posts fix for critical Flash flaw

Adobe is posting an update to address a critical flaw in Android and all desktop versions of its Flash media platform.

The company said that the security update would patch a remote code execution flaw in the Flash Player plug-in which is currently being exploited by cyber criminals in the wild.

The update addresses Flash Player 11.2.202.233 and earlier on Windows, OS X and Linux systems as well as Flash Player 11.1.115.7 and earlier for Android. The company is recommending that all users run the latest version of Flash Player and update if needed.

The company noted that Windows users should place a particularly high priority on the update as the attacks spotted have targeted the Flash component within Internet Explorer.

Keeping systems updated and patched has become a top security concern for Adobe.

A recent study from security firm Zscaler found that Adobe Flash, Acrobat and Reader are among the most common outdated components reported by users.

A recent study from Microsoft also found that Flash was one of the most commonly-targeted components for web-based exploits.

The Adobe release lands just four days before Microsoft is set to post its May security update. The release is set to include at least three bulletins which will address critical remote code execution flaws in Windows and Office.