Threat Level: green Handler on Duty: Kevin Liston

SANS ISC: InfoSec Handlers Diary Blog - MS06-069: Adobe Flash Player InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

MS06-069: Adobe Flash Player

Published: 2006-11-14
Last Updated: 2006-11-14 19:34:49 UTC
by Jim Clausing (Version: 2)
0 comment(s)
CVE-2006-3014, CVE-2006-3311, CVE-2006-3587, CVE-2006-3588, and CVE-2006-4640

Updates Adobe's Macromedia Flash Player which was inlcuded in XP SP2 and XP Pro x64.  This appears to be the same update that Adobe made available in September (see here).

A buffer overflow exists that could be exploited by a malformed SWF file which could be distributed via web or e-mail.

This patch should be considered critical for user machines and less urgent for servers.  Those who updated Flash Player as a result of the Adobe bulletin should not be at risk.

http://www.microsoft.com/technet/security/bulletin/ms06-069.mspx
http://www.adobe.com/support/security/bulletins/apsb06-11.html
Keywords: adobe flash Microsoft
0 comment(s)
Diary Archives