Adobe Warns Of Zero-Day Vulnerability In Flash

Adobe has issued yet another security advisory, warning users about a zero-day vulnerability in its Flash platform.

The security advisory warns that a critical zero-day vulnerability exists in the Adobe Flash Player 10.1.82.76 and earlier versions for Windows, Macintosh, Linux, Solaris, and Adobe Flash Player 10.1.92.10 for Android.

The vulnerability also affects Adobe Reader 9.3.4 for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh.

Adobe warned that, if exploited, the vulnerability could cause a computer to crash and allow a hacker to gain complete control of the system.

Just like the previous vulnerability, this is also being actively exploited in the wild.

The company said: “We are in the process of finalising a fix for the issue and expect to provide an update for Adobe Flash Player for Windows, Macintosh, Linux, Solaris, and Android operating systems during the week of September 27, 2010.”

Adobe credited the discovery of the vulnerability to one Steven Adair of the Shadowserver Foundation.