Security flaws could lead to code execution in unpatched versions
Together with rolling out new features in the freshly released Flash 11.5 (Windows and Mac), Adobe has also patched the player against a set of critical security vulnerabilities.Some of the flaws could cause Flash Player to crash and presented the risk that an attacker could take control of the affected system. In other cases, the repairs address buffer overflow problems that could be used for code execution on the machine.
Additional security glitches addressed with updating to the latest version of Flash Player include memory corruption that could also lead to code execution, as well as a security bypass vulnerability that would enable the same malicious action.
Adobe was not alone in fixing these security issues as Mateusz Jurczyk, Gynvael Coldwind, Fermin Serna and Eduardo Vela Nava of Google Security Team were also involved in reporting and working with the company to deliver the patches.
Download Adobe Flash Player for Windows, Mac or Linux