As previously reported by Infosecurity, the vulnerability, which affects Flash Player 10.2.153.1 and earlier versions for Windows, Mac, Linux and Solaris, could cause a crash and potentially allow an attacker to take control of the affected system.
The vulnerability also affects version 10.2.154.25 and earlier for Chrome users, version 10.2.156.12 and earlier for Android, the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.2) and earlier 10.x and 9.x versions for Windows and Mac operating systems.
Adobe expects to release a security update for Flash Player 10.2.x and earlier versions for Windows, Mac, Linux and Solaris on 15 April 2011.
The company is aiming to release an update for Adobe Acrobat X (10.0.2) and earlier 10.x and 9.x versions for Windows and Mac, Adobe Reader X (10.0.1) for Mac, and Adobe Reader 9.4.3 and earlier 9.x versions for Windows and Mac no later than the week of 25 April 2011.
"Because Adobe Reader X Protected Mode would prevent an exploit of this kind from executing, we are currently planning to address this issue in Adobe Reader X for Windows with the next quarterly security update for Adobe Reader, currently scheduled for 14 June 2011," the advisory said.
This story was first published by Computer Weekly