Adobe has released a fix for the Flash flaw, in the form of an updated version of Flash. Adobe has yet to release an updated Flash to fix its zero-day vulnerability, although says it may do so this week. All recent versions of Internet Explorer – IE9, IE10 and IE11 – are at risk from the remote memory-corruption vulnerability. In some Windows versions, the vulnerable scripting engine is also packaged separately from the browser. The attack is a reminder that all software should be run with non-privileged user settings that carry “minimal access rights””]
Source: https://www.cuinfosecurity.com/zero-day-attacks-pummel-ie-flash-a-9093