Macromedia Inc. is warning that all versions of the software company's Windows Flash plug-ins and players published before Dec. 12 contain a potentially serious software vulnerability. The flaw is the result of a buffer overflow, in which malformed information sent to the app could cause it to crash, and users of the Flash applications could fall victim to maliciously crafted Flash movies found on Web sites or within E-mail embedded Flash movies.
The flaw was discovered by eEye Digital Security. Macromedia recommends that users upgrade to the most recent version of the company's Flash Player. More information is available on Macromedia's Web site.