Adobe has released a security bulletin to address a vulnerability in Adobe AIR. This vulnerability can be triggered if an Adobe AIR application loads data from an untrusted source. Exploitation of this vulnerability may allow a remote attacker to execute JavaScript code with elevated privileges.

US-CERT encourages users to review Adobe Security Bulletin APSB08-23 and upgrade to Adobe AIR 1.5 to help mitigate the risks.

Read more: US-CERT Current Activity