One of the other problems “potentially” allows remote execution of arbitrary code, which would be more serious than keystroke logging if someone works out how to exploit it. Hopefully nobody will work that out, as I’m sure there are an awful lot of computers out there that won’t get updated to the latest flash player.

http://isc.sans.org/diary.html?storyid=3126

http://www.adobe.com/support/security/bulletins/apsb07-12.html

Yesterday, a /. story suggested that previous versions of Flash could even allow for keystroke logging…so I’d call this an important update.

http://it.slashdot.org/article.pl?sid=07/07/16/156233