A computer science student at Stanford University has discovered a hole in Adobe Flash that could be used by an attacker to furtively enable the victim’s camera and microphone. The vulnerability is not in Flash itself, but the Adobe Flash Settings Manager page.
Read more at:
Maximum PC | Flash Flaw Allows Remote Activation of Webcam, Mic