Microsoft released Security Advisory 925143 on September 12th to warn customers about Adobe Security Bulletin APSB06-11. The bulletin discusses multiple security vulnerabilities discovered in Adobe Flash Player versions 8.0.24.0 and earlier. Vulnerable versions of Flash Player were re-distributed with Windows XP Service Pack 1 and Service Pack 2, and in Windows XP Professional x64 Edition.
Adobe categorizes this as a “Critical” update and recommends upgrading to the latest version of Adobe Flash Player (9.0.16.0) to address these issues. Fixlet messages are available in the “Updates for Windows Applications” site to upgrade Adobe Flash Player. BES users not subscribed to “Updates for Windows Applications” and are interested in an evaluation should contact your BigFix sales representative for more information.
Microsoft Security Advisory and Adobe Security Bulletin links:
Microsoft has updated the advisory to announce the availability of Security Bulletin MS06-069. Microsoft recommends deploying the MS06-069 security updates as soon as possible to address this vulnerability on computers running Adobe Flash Player 6 on Windows XP Service Pack 2 and Windows XP Professional x64 Edition. Fixlet messages are available in the “Patches for Windows” Fixlet sites to deploy the MS06-069 security updates.
Please note that other platforms running other versions of Adobe Flash Player are not supported by Microsoft and the MS06-069 security update will not close the vulnerability on these machines. Adobe recommends upgrading to the latest version of Adobe Flash Player to fully address this vulnerability. Fixlet messages are available in the “Updates for Windows Applications” Fixlet site to deploy the latest version of Adobe Flash Player, on all platforms supported by Adobe.