Adobe have issued a security announcement reporting they have discovered a critical vulnerability in their Flash Player 10.2.152.33 and earlier versions which affects Windows, Macintosh, Linux and Solaris operating systems.
The newly discovered vulnerability within Flash Player could cause crashes and potentially allow an attacker to take control of the affected system. With reports of the security hole being used in the wild via a Flash file (.swf) embedded within a Microsoft Excel file (.xls).
Adobe is currently working on a fix for the issue and hope to release a fix during the week commencing during the week of March 21, 2011. Together with an Adobe Reader X Protected Mode update for Adobe Reader, currently scheduled for June 14, 2011.
More details about the newly discovered critical vulnerability within Adobe’s Flash Player can be found on the Adobe website.