Multimedia tools developer Adobe stated on Tuesday in a brief blog post
that the company is investigating reports of a previously unknown
vulnerability in its Flash software, after it received evidence that
attackers are using malicious Flash files to compromise computers.
The exploit -- first reported by security software company Symantec, the owner of SecurityFocus
-- appears to be fairly widespread. The original Symantec report
indicates that nearly 20,000 pages are hosting malicious Flash (SWF)
files, while antivirus firm McAfee points out that Google returns nearly a quarter million search results for the attack's telltale code.
http://www.securityfocus.com/brief/744