After Adobe resolved its Zero Day vulnerability in Flash Player, Microsoft published an out-of-band patch to deliver the fix to Windows users.
Flash Player is offered as a built-in component on Windows 8.1 and Windows 10, so Microsoft needs to ship stand-alone patches via Windows Update whenever the company fixes a vulnerability.
This is what happened after Adobe fixed a Zero Day in Flash Player that could have allowed attackers to compromise a Windows host using nothing else than a malicious Microsoft Office document.
The Zero Day code can end up embedded in Word and Excel documents, but also in other files deployed on vulnerable Windows systems. Adobe said there were exploits leveraging the vulnerability.
Microsoft’s security update is KB4471331 and it is being delivered to all Windows 10 versions, but also to Windows 8.1, Window RT 8.1, Windows Server 2019, and Windows Server 2016.
The company warns in the case of Windows 10 version 1607, updates may not be installed automatically, and users are recommended to head over to Windows Update to check for the security patch manually.