Adobe Security Advisory - New Flash and PDF attacks in wild
Please be careful with PDF processing and web pages that include Flash presentations (usually advertisements). Please keep anti-virus protection up-to-date also, as many AV products also include exploit detection for this new risk. Adobe should have releases soon and these updates should be updated expediently.
Adobe Security Advisory - Flash and PDF attacks in wild
QUOTE: Adobe has released an advisory that a critical vulnerability exists for Windows, Macintosh, Linux and Solaris in the Adobe Flash Player version 10.0.45.2 and earlier as well as in the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for Windows, Macintosh and UNIX operating systems. This vulnerability (CVE-2010-1297) could cause a crash and potentially allow an attacker to take control of the affected system. Adobe has received reports indicating this vulnerability is being actively exploited in the wild against Adobe Flash Player, Adobe Reader and Acrobat. The original security bulletin and suggested mitigations by Adobe is posted here.
* Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions for Windows, Macintosh, Linux and Solaris
* Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions for Windows, Macintosh and UNIX