Has anybody applied Microsoft's workaround or Adobe's new Flash version?
Microsoft Suggested Workarounds:
- Workaround details: https://technet.microsoft.com/library/security/2963983
- Deploy the Enhanced Mitigation Experience Toolkit 4.1 (EMET). Note: EMET 3.0 does not mitigate this issue.
- Set Internet and Local intranet security zone settings to "High" to block ActiveX Controls and Active Scripting in these zones.
- Configure Internet Explorer to prompt before running Active Scripting or to disable Active Scripting in the Internet and Local intranet security zone.
- Unregister VGX.DLL.
- Modify the Access Control List on VGX.DLL to be more restrictive.
- Enable Enhanced Protected Mode For Internet Explorer 11 and Enable 64-bit Processes for Enhanced Protected Mode.
Adobe Flash CVE-2014-0515:
http://helpx.adobe.com/security/products/flash-player/apsb14-13.html