Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
MS06-020: Vulnerabilities in Macromedia Flash Player from Adobe could allow remote code execution
Article ID: 913433 - View products that this article applies to.
Microsoft has released security bulletin MS06-020. The security bulletin contains all the relevant information about the security update for Macromedia Flash Player from Adobe. This includes file manifest information and deployment options. To view the security bulletin, visit one of the following Microsoft Web sites:
Known issuesConsider the following scenario. Users install Flash Player 7 or Flash Player 8 on a computer that previously had a version of Flash Player 6 installed on it. The MS06-020 security update was not installed on that version of Flash Player 6. Users then uninstall Flash Player 7 or Flash Player 8. Thereafter, they will be offered the MS06-020 security update every time that they visit the Windows Update or the Microsoft Update sites. If users enable Automatic Updates, they will also be offered the MS06-020 security update through that mechanism.
In these cases, the MS06-020 security update will not install, and users will receive the following error:
Windows Update, Microsoft Update, and Automatic Updates will continue to offer the MS06-020 security update.
The version of Macromedia Flash you have installed does not match the update you are trying to install.
Note This problem does not occur if users install the MS06-020 security update on a system with Flash Player 6 before they install Flash Player 7 or Flash Player 8.
WORKAROUNDThere are three methods to work around this problem. Any one of these workarounds will prevent Windows Update, Microsoft Update, and Automatic Updates from offering to install the MS06-020 security update. These workarounds are as follows:
Note This issue does not leave the user’s system in an insecure state where the Flash Player is concerned, even though the security update could not be installed. The security update cannot be installed because the Flash Player files are present, but they are not registered. Because they are not registered, the Flash Player cannot be run. As soon as one of the files are reregistered, the user will resume receiving security updates through the regular channels.
Article ID: 913433 - Last Review: September 30, 2011 - Revision: 4.0