Adobe has confirmed an exploit in the latest version of the Flash 10.1 runtime which has the potential for malicious code to take control of a machine or device with the software installed.Â The company has issued the following statement:
“This vulnerability could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild against Adobe Flash Player on Windows. We are in the process of finalizing a fix for the issue and expect to provide an update for Adobe Flash Player for Windows, Macintosh, Linux, Solaris, and Android operating systems during the week of September 27, 2010.”
The company urges users to keep antivirus software up to date and to remain vigilant ahead of the update.Â The admission of the exploit on the Android platform also raises confidence issues with the integrity of the operating system and runtime in the eyes of average consumers.