Home arrow US-CERT Computer Emergency Readiness Team arrow Adobe Flash Player Vulnerabilities

Adobe Flash Player Vulnerabilities

Adobe has released updates described in the Adobe Security bulletinSecurity bulletin to address multiple vulnerabilities in Flash Player. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, and cross-site scripting. The Adobe Security bulletin states that all platforms running a vulnerable version of Flash Player are affected.

Note that CVE-2007-4324 was addressed by providing additional functionality to ActionScript, which mitigates this vulnerability. See Adobe kb402956kb402956 for more information regarding this specific CVE.

More information regarding the vulnerabilities and remediation information can be found in:

US-CERT strongly encourages users to review the bulletins and follow best-practice security policies to determine which updates should be applied.