Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
National Cyber Alert System
Cyber Security Alert SA10-012B archive

Microsoft Windows and Adobe Flash Player 6 Vulnerabilities

Original release date: January 12, 2010
Last revised: --
Source: US-CERT

Systems Affected

  • Microsoft Windows and Internet Explorer
  • Adobe (Macromedia) Flash Player 6

Overview

Microsoft has released updates to address a vulnerability in Microsoft Windows. Microsoft has also published an Advisory about multiple vulnerabilities in Adobe Flash Player 6 that is included with Windows XP.


Solution

Install updates

The updates to address the Windows font vulnerability are available on the Microsoft Update site (requires Internet Explorer). We recommend enabling Automatic Updates.

Upgrade or Remove Adobe Flash Player 6

To address the Flash Player 6 vulnerabilitites, upgrade to a current version or remove Flash Player using the uninstaller.


Description

Microsoft Security Bulletin MS10-001 describes a vulnerability in the Embedded Open Type (EOT) font engine in Windows. Microsoft Security Advisory (979267) notes multiple vulnerabilities in Adobe Flash Player 6 (formerly Macromedia Flash Player) that is included with Windows XP. The Advisory recommends that Windows XP users upgrade or remove Flash Player

These vulnerabilities may allow an attacker to gain control of your computer or cause it to crash.


References


Feedback can be directed to US-CERT.

Produced 2010 by US-CERT, a government organization. Terms of use


Revision History

January 12, 2010: Initial release

Last updated January 12, 2010
print this document