Background:
Adobe's Flash Player prior to version 9.0.124.0 is vulnerable to a bug that is actively being exploited. The vulnerability is not remotely exploitable. However, simply browsing a website that has been compromised to deliver a maliciously crafted flash file can infect your system. The current exploit is known only to work on Windows computers. Although, this could change in the future.
Action:
COSINe will update Flash Players on SCIENCE domain computers. Please check the version of Flash on your own machines and update them as necessary. Note, Firefox and Internet Explorer use different plugins and so you will need to test both browsers. Also, if your system has the standalone flash player included with some versions of the Creative Suite and Dreamweaver Suite, please run the Adobe Updater included in those programs.
Flash Player Test:
http://www.adobe.com/products/flash/about/
Flash Player Install:
http://www.adobe.com/go/getflash
Adobe Security Advisory:
http://www.adobe.com/support/security/advisories/apsa08-03.html
Adobe Updated Informational Notice:
http://blogs.adobe.com/psirt/2008/05/more_information_on_recent_fla.html