A critical vulnerability exists in Adobe Flash Player 10.1.82.76 and earlier versions. An update has not been released by Adobe. There are reports that this vulnerability is being actively exploited in the wild against Adobe Flash Player on Windows. Adobe is expecting to release an update during the week of September 27, 2010.
This vulnerability also affects Adobe Reader 9.3.4 and earlier versions; however, no attacks have been reported. Adobe is expecting to release an update to Reader during the week of October 4, 2010.
Adobe did not release any workaround for this vulnerability. We recommend keeping your anti-virus and anti-malware software definitions up to date. For more information see the Adobe security advisory at http://www.adobe.com/support/security/advisories/apsa10-03.html.