Adobe Flash Player Out-of-Band Critical Security Update

[Corrine]

Adobe has released Version 23.0.0.205 of Adobe Flash Player for Microsoft Windows, Macintosh and Chrome as well as Version 11.2.202.643 for Linux.

The update addresses an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10.

Warning:  Although Adobe suggests downloading the update from the Adobe Flash Player Download Center, that link includes a pre-checked option to install unnecessary extras, such as McAfee Scan Plus or Google Drive.  If you use the download center, uncheck any unnecessary extras.

    Non-IE Plugin (Opera, Firefox, Etc.):  http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_23_plugin.exe
    Flash Player For Internet Explorer, Windows 7 and earlier:  http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_23_active_x.exe
    Internet Explorer and Microsoft Edge:  Windows Server 2012, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1 and Windows 10: Adobe Flash Player is now a security bulletin rather than a security advisory and is distributed via the normal Windows Update channel.
    Flash Player Uninstaller:  http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe
    Adobe AIR:  http://get.adobe.com/air/

Security Bulletin
Release Notes:  Flash Player® 23 AIR® 23

[Corrine]

Update for Microsoft Edge and IE11:  MS16-141: Security update for Adobe Flash Player: October 27, 2016