According to a set of surprise announcements posted on its portal earlier in the week, Adobe says that the Windows versions of its Flash and Shockwave players include security flaws, owing to the fact that it used a Microsoft code library during development.
Whilst it is no surprise that Flash is vulnerable to attack - researchers from Germany revealed this to be the case at the start of July - the issue centres on Adobe's use of third-party code in the development stages.
Adobe has now patched the flaws, but has pointed the finger at Microsoft for the problem, in a blog posting by Wendy Poland, of Adobe's security team.