Adobe announced today an emergency update only to be released on Thursday June 16. The upcoming patch will set a zero-day (where else?) In Flash Player, which is currently being used for targeted attacks.
According to Kaspersky's Anton Ivanov and Costin Raiu, the vulnerability usesalready in targeted attacks.
The vulnerability identifier registered for this zero-day is CVE-2016-4171, and Adobe reports that it affects both Flash Player 21.0.0.242 and earlier versions running on Windows, Macintosh, Linux and Chrome OS.
Flash Player 21.0.0.242 is the latest version of the company. This means that zero-day affects all Flash-based systems.
The vulnerability allows an attacker to crash an installation of Flash Layerer in an insecure manner, which then allows him to run malicious code to the victim's system and take over its management.
If you are using Flash Player, immediately disable the application, or plugin, until at least the Adobe ch patch is released…