Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors.
lists.apple.com/archives/security-announce/2010//Jun/msg00001.html
lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
secunia.com/advisories/38547
secunia.com/advisories/38639
secunia.com/advisories/38915
secunia.com/advisories/40220
secunia.com/advisories/43026
security.gentoo.org/glsa/glsa-201101-09.xml
securitytracker.com/id?1023585
support.apple.com/kb/HT4188
www.adobe.com/support/security/bulletins/apsb10-06.html
www.adobe.com/support/security/bulletins/apsb10-07.html
www.osvdb.org/62300
www.redhat.com/support/errata/RHSA-2010-0114.html
www.securityfocus.com/bid/38198
www.vupen.com/english/advisories/2010/1481
www.vupen.com/english/advisories/2011/0192
bugzilla.redhat.com/show_bug.cgi?id=563819
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8518
rhn.redhat.com/errata/RHSA-2010-0102.html
rhn.redhat.com/errata/RHSA-2010-0103.html