National Cyber Awareness System
Security Updates Available for Adobe Flash Player

Original release date: February 27, 2013

Adobe has released security updates for Adobe Flash Player. These
updates address vulnerabilities that could cause a crash and potentially
allow an attacker to take control of an affected system.
Adobe is aware of reports that CVE-2013-0643 and CVE-2013-0648 are being
exploited in the wild in targeted attacks designed to trick the user
into clicking a link that directs to a website serving malicious Flash
(SWF) content.
Security updates are available for the following versions of Adobe Flash
Player:
* Adobe Flash Player 11.6.602.168 and earlier versions for Windows
* Adobe Flash Player 11.6.602.167 and earlier versions for Macintosh
* Adobe Flash Player 11.2.202.270 and earlier versions for Linux

US-CERT encourages users and administrators to review Adobe Security
Bulletin APSB13-08 and follow best practice security policies to
determine if their organization is affected and the appropriate
response.

Relevant URL(s):
<http://www.adobe.com/support/security/bulletins/apsb13-08.html>