Saturday, November 18, 2006

MS06-069 and Macromedia Flash

MS06-069 was included in the update last Tuesday as a critical update with the indication that vulnerabilities in Macromedia Flash Player from Adobe could allow remote code execution.

What may have been missed is that the MS06-069 is for those systems that have the Adobe Macromedia Flash Player, Version 6. Note, however, that the system is not at risk if Adobe Security Bulletin APSB06-11, issued September 12, 2006, has been followed.

The vulnerable versions of Macromedia Flash Player from Adobe are those that are redistributed with Windows XP SP2 and Windows XP Pro, x64 Edition. Apparently, other versions of Windows are not affected or not supported by MS06-069.

If you have a different operating system or have upgraded to Flash Player 7 or higher see the update provided by Adobe in Bulletin APSB06-11.

No comments: