Adobe devs must be working overtime to fix the latest vulnerabilities revealed through the Hacking Team cyberattack.
The flaw, which is being leveraged in "limited, targeted attacks," allows remote code execution, Microsoft warns.
Monthly security update addresses two dozen vulnerabilities, including one being exploited as part of the "Sandworm" cyberattack.
The company says two vulnerabilities are being actively exploited and recommends that Windows and Mac OS X users of the browser plug-in update their systems immediately.
Google wants technology firms to cut down on the amount of time it takes to fix zero day vulnerabilities, but some are crying foul.
Something similar to the zero-day exploit recently discovered in Adobe's Reader and Acrobat tools has been found for its Flash Player as well.
Out-of-band fix on Tuesday will address nine vulnerabilities, including a critical zero-day hole disclosed three weeks ago that affects Internet Explorer 6 and 7.
Company releases security fix for critical hole in Reader 9 and Acrobat 9 that has been exploited.
Patch Tuesday will include 13 bulletins fixing 34 vulnerabilities including zero-day flaws in Microsoft Server Message Block and Internet Information Services.
Software giant releases fixes for vulnerabilities in Windows and Office, but several known Word zero-day flaws go without patches.