F-Secure Security Center has disclosed an Adobe Flash Player remote code execution vulnerability.
Report ID: SA200900917
Source: F-Secure
Date of Discovery: 25.02.2009
Criticality: Urgent
Affects:
Adobe Flash Player 10.x
Adobe Flash Player 9.x
Compromise From: From remote
Compromise Type: System access
Remote code execution
An upgrade to 10.0.22.87 (10.0r22) is the solution.
It also is a good idea to check the program directory (C:\WINDOWS\system32\Macromed\Flash) and remove all prior versions of flash.