CVE 2011-2139

Adobe Flash Player before on Windows, Mac OS X, Linux, and Solaris and before on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before on Android, allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified vectors.

See the CVE page on for more details.