As has been happening frequently, another Adobe Flash security vulnerability has come to light (called CVE-2016-4171 – Mitre, Adobe). Unfortunately, this vulnerability is being exploited in the wild, and, as usual, Adobe won’t have a fix available for several days, at least.
So, what can you – the end user – do to protect yourself? Many browsers, including Firefox, already have Flash set to click-to-play by default, meaning that you have to click the Flash application before it’ll actually run. – MORE