www.eeye.com has found a buffer overflow in Macromedia's flash.
This hole was found by accident while surfing a website
when eeye noticed some strange errors. After further
investigation they found that they could inject commands
into the player stack.
Anyone who uses flash is is urged to upgrade to version
6 revision 29.