JPCERT-AT-2011-0013 JPCERT/CC 2011-05-13 <<< JPCERT/CC Alert 13.05.11 >>> Vulnerabilities in Adobe Flash Player https://www.jpcert.or.jp/at/2011/at110013.txt I. Overview Adobe Flash Player contains multiple vulnerabilities. As a result, a remote attacker could execute arbitrary code by convincing a user to open specially crafted contents. Adobe Systems has already observed attacks exploiting some of these vulnerabilities. Users are recommended to update to the corrected software provided by Adobe Systems. Adobe Security Bulletins APSB11-12 Security update available for Adobe Flash Player http://www.adobe.com/support/security/bulletins/apsb11-12.html II. Products Affected Affected products and versions are as follows: - Adobe Flash Player 10.2.159.1 and earlier For more information, refer to Adobe website. III. Solution - Adobe Flash Player Update Adobe Flash Player to the following latest version. For more information, refer to Adobe website. - Adobe Flash Player 10.3.181.14 Adobe Flash Player Download Center http://get.adobe.com/jp/flashplayer/ http://get.adobe.com/flashplayer/ The Adobe Flash Player version number installed on your PC can be verified through the following page: Adobe Flash Player:Version Information http://www.adobe.com/jp/software/flash/about/ http://www.adobe.com/products/flash/about/ * Even if using browsers other than Internet Explorer, Flash Player may be installed on Internet Explorer. Therefore, the Flash Player for Internet Explorer should also be updated. IV. References Adobe Security Bulletins APSB11-12 Security update available for Adobe Flash Player http://www.adobe.com/support/security/bulletins/apsb11-12.html If you have any further questions or information regarding this alert, please contact JPCERT/CC. ====================================================================== JPCERT Coordination Center (JPCERT/CC) MAIL: info@jpcert.or.jp TEL: +81-3-3518-4600 FAX: +81-3-3518-4602 https://www.jpcert.or.jp/english/