HTTP Header Injection Vulnerabilities in Adobe Flash Player

Right on schedule a new Adobe Flash vulnerability was announced today. Version 9.0.28.0 is available to fix the problem.
This allows an attacker to perform cross-site scripting, cache poisoning, or session hijacking.