Wired - Adobe Systems has announced it’s in the process of fixing a security vulnerability in Flash that would allow malicious web sites to remotely operate a user’s webcam and microphone.
The vulnerability is on Adobe’s server side, not on client-side software, and therefore does not require users to update their software.
Adobe told CNET it was hoping to have the fix done by the end of this week.
