Adobe has reported that an unpatched vulnerability in its Adobe Flash Player can be exploited to inject and execute malicious code. The vulnerability has reportedly been used for targeted attacks in which victims, rather than being lured to a crafted webpage, were sent infected Excel files via email. These contained a crafted SWF file which ran in Flash Player when the Excel file was opened.
