Time to patch all of your Adobe Flash player instances again. Please remember to remove all older versions of the Flash player as part of your upgrade to make sure systems vulnerability scans come back clean and don't complain about old Flash version binaries laying around. If you need help automating this process, please contact sales @ sharpesecurity.com.
Adobe's bulletin follows:
APSB10-06 - Security update available for Flash Player
Originally posted: February 11, 2010
A critical vulnerability has been identified in Adobe Flash Player version 10.0.42.34 and earlier. This vulnerability
(CVE-2010-0186) could subvert the domain sandbox and make unauthorized cross-domain requests.
Adobe recommends users of Adobe Flash Player 10.0.42.34 and earlier versions update to Adobe Flash Player 10.0.45.2.
Adobe recommends users of Adobe AIR version 184.108.40.2060 and earlier versions update to Adobe AIR 220.127.116.110.
email: david @ sharpesecurity.com