Critical Vulnerability Plagues Adobe Flash And Acrobat Reader

Adobe have announced that cyber criminals are exploiting a major flaw in their Adobe Reader and Adobe Flash player software.

It is assumed that this bug is similar to the Zero day vulnerability, which had affected Adobe in July 2009.

The latest bug is affecting the new Adobe Flash 0.0.45.2 and media players in Windows, Macintosh, Solaris and Linux operating systems.

It will also affect the Adobe Acrobat Reader 9x on Macintosh, Windows and Unix.

Denmark-based bug tracker company, Secunia has classified the bug as 'critical'.

The threat of the vulnerability is increased significantly as it exists in the authplay.dll which acts as an interpreter to Flash content integrated with PDF files.

Adobe had issued an advisory on Friday regarding the bug, stating: “There are reports that this vulnerability is being actively exploited in the wild against Flash Player, Reader and Acrobat."

Adobe users can delete the affected file or rename it for protection, but, in doing so, they risk file errors when trying to open PDF files.