We have released a new Flash Player, version 220.127.116.11. This fixes a few issues mentioned in the:
but more importantly, addresses a number of security issues described in the following security bulletins.
- MPSB02-09 - Macromedia Flash Malformed Header Vulnerability Issue
- MPSB02-10 - Macromedia Flash URL Modification Issue
This Flash Player will no longer follow redirects. This will break some existing Flash content that loads data from a third domain through a server side redirect. However, there is a simple server side solution, which is describe in this technote:
You can download the new player here.
Note, I will be hanging out in the chat today to answer any questions.
Update, we will be releasing updated standalone, authoring and debug players in the next couple of days.