Java and Flash 0 day Exploited in The Wild
On Saturday 3 critical Java and Flash 0 day vulnerabilities have been discovered, allowing attackers to secretly install malware and execute arbitrary code on victims computers. Users are urged to be cautious when using Java and Flash.
Java vulnerability has gained significance since it is wildly exploited and attackers even attempted to infect members of NATO. According to Trend Micro
Attack involves a separate Windows vulnerability indexed as CVE-2012-015, which Microsoft addressed in 2012 in bulletin MS12-027. Oracle developers are working on a fix.
Microsoft has already released a patch that may be found at: MS12-027