he attacks are delivered in a malicious Microsoft Word document that exploits the ActiveX version of Flash Player for Internet Explorer on Windows.Well hell, i better go update flash.Adobe released Acrobat 9 last year, the company introduced support for embedding Flash media in PDF files. This feature is now being used by attackers who are exploiting a new vulnerability in Adobe's Flash media plugin.
You are bad at providing a convincing argument. Very good at misinterpreting my point though. I was originally talking specifically about the last couple versions of flash which don't really have much in the way of security fixes, if any at all.
Keeping up to date with flash usually makes you more vulnerable than you would be otherwise since it's so horrible. You provided a day zero exploit for me so we'll use that as an example. Probably best to stay at least one version behind unless there's an important security fix.
I think that's what I was trying to say. I hate flash though, so I probably went overboard. :3
I don't think that anyone ever actually liked flash, it just became ubiquitous as a means of presenting content identically across platforms and browsers. With recent trends towards widespread standards adoption and HTML5's addition of a video element, Flash looks about ready to be put out to pasture anyway. Adobe is even creating a new tool (Adobe Edge which relies on HTML5 elements to create a timeline enviroment. If only they could get that pesky video codec problem solved...