Adobe has just released a Security Advisory for vulnerability found in Flash Player 10.2.153.1 and earlier version. According to Adobe, Vulnerability could exploited by a hacker to gain control of system with the help of specially crafted flash file embedded in Microsoft Word (.doc). Reports from various sources suggests that vulnerability is actively being exploited.
Affected Software Versions
- Adobe Flash Player 10.2.153.1 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems
- Adobe Flash Player 10.2.154.25 and earlier for Chrome users
- Adobe Flash Player 10.2.156.12 and earlier for Android
- The Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.2) and earlier 10.x and 9.x versions for Windows and Macintosh operating systems
As there is no update or patch available for this vulnerability users are advised to take caution while opening any such file which is received from not so reliable source. Adobe is currently finalizing a schedule for delivering updates for all affected versions of Flash Player except for Adobe Reader X which will receive the update on the next quarterly security update on June 14, 2011.
For more information read the detailed report from at Adobe’s official site.