As a (nearly) degreed web design student, I pay particularly close attention to web and internet threats to the average user. First, I don’t want my site or software to be hacked. Second, I don’t want to be the source of someone else getting hacked.

It appears that Macromedia (now Adobe) Flash has been found to have some security holes. Why is this an issue? Well, it seems that 98% of Web users have the Flash Player installed on their computer. Here is today’s report from the CERT team.

National Cyber Alert System

Cyber Security Alert SA06-075A

Adobe Macromedia Flash Products Contain Vulnerabilities

Original release date: March 16, 2006
Last revised: –
Source: US-CERT

Systems Affected

Microsoft Windows, Mac OS X, and other operating systems that use
the following products:
* Adobe Macromedia Flash Player
* Adobe Macromedia Flash
* Adobe Macromedia Flex
* Adobe Macromedia Breeze
* Adobe Macromedia Shockwave Player

Overview

There are critical vulnerabilities in Macromedia Flash player and
related software that may allow an attacker to take control of your
computer.

Solution

Apply Updates
Adobe has provided the updates for these vulnerabilities. To obtain
the update, visit the Security Bulletin. US-CERT recommends that
you update to the most current version of your Macromedia product.

Description

Some features of Macromedia products contain critical
vulnerabilities. If an attacker can convince you to open a
malicious Flash file, which may be hosted on a web site, he or she
may be able to take control of your computer or cause it to crash.
The Macromedia Security Bulletin provides updates that address
these vulnerabilities. For more technical information, see US-CERT
Technical Cyber Security Alert TA06-075A.

References

* US-CERT Technical Cyber Security Alert TA06-075A.html -

* US-CERT Vulnerability Note VU#945060 -

* Macromedia - APSB06-03: Flash Player Update to Address Security
Vulnerabilities -

* Microsoft Security Advisory (916208) -