Adobe Systems has released yet another emergency security update addressing three vulnerabilities in Flash, two of which have already been exploited by hackers.
In an advisory note released Tuesday, the company said it patched holes which could the system to a crash and potentially allow hackers to take control of the affected system.
Identifying the vulnerabilities by their Common Vulnerabilities & Exposures (CVE), Adobe said CVE-2013-0643 and CVE-2013-0648 had been exploited in targeted attacks to trick users into clicking a link directing them to a Web site containing malicious Flash content. The exploit for CVE-2013-0643 and CVE-2013-0648 was also designed to target the Firefox browser.
Adobe also assigned a Priority 1 rating, its highest threat level, to the vulnerabilities exploited on Windows and Mac OS X, and advised users of both operating systems to install the update within 72 hours. This vulnerability identifies vulnerabilities being targeted or have a higher risk of being targeted.
The note also assigned Priority 3 rating to a Flash vulnerability facing Linux users, which refers to products historically not a target of attackers.