Adobe has updated its Flash Player to address 11 security flaws, reports eSecurity Planet. The vulnerabilities affect Flash Player 10.2 and earlier versions on Windows, Mac, Linux and Android platforms. According to Adobe's advisory:
These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.
One flaw is already being exploited in the wild via a Flash file embedded in a Microsoft Word or Microsoft Excel file sent as an email attachment. The exploit targets the Windows platform.
Of the 11 flaws, Flash Player 10.3 fixes five memory-corruption vulnerabilities, four bounds-checking vulnerabilities, an integer overflow vulnerability and a design flaw.