JPCERT-AT-2011-0018
JPCERT/CC
2011-06-15
<<< JPCERT/CC Alert 15.06.11 >>>
Vulnerability in Adobe Flash Player
https://www.jpcert.or.jp/at/2011/at110018.txt
I. Overview
Adobe Flash Player contains a memory corruption vulnerability. As a
result, a remote attacker could execute arbitrary code by convincing a
user to open specially crafted contents.
Adobe Systems has already observed attacks exploiting this
vulnerability. Users are recommended to update to the corrected
software provided by Adobe Systems.
Adobe Security Bulletins APSB11-18
Security update available for Adobe Flash Player
http://www.adobe.com/support/security/bulletins/apsb11-18.html
II. Products Affected
Affected products and versions are as follows:
- Adobe Flash Player 10.3.181.23 and earlier
* This vulnerability will not affect Adobe Reader/Acrobat.
For more information, refer to Adobe Systems' website.
III. Solution
Update Adobe Flash Player to the following latest version. For more
information, refer to Adobe Systems' website.
- Adobe Flash Player 10.3.181.26
Adobe Flash Player Download Center
http://get.adobe.com/jp/flashplayer/
http://get.adobe.com/flashplayer/
The Adobe Flash Player version number installed on your PC can be
verified through the following page:
Adobe Flash Player:Version Information
http://www.adobe.com/jp/software/flash/about/
http://www.adobe.com/products/flash/about/
* Even if using browsers other than Internet Explorer, Flash Player
may be installed on Internet Explorer. Therefore, the Flash Player
for Internet Explorer should also be updated.
IV. References
Adobe Security Bulletins APSB11-18
Security update available for Adobe Flash Player
http://www.adobe.com/support/security/bulletins/apsb11-18.html
If you have any further questions or information regarding this
alert, please contact JPCERT/CC.
======================================================================
JPCERT Coordination Center (JPCERT/CC)
MAIL: info@jpcert.or.jp
TEL: +81-3-3518-4600 FAX: +81-3-3518-4602
https://www.jpcert.or.jp/english/
Top