Advisories » Adobe Flash Player Unspecified Remote Code Execution Vulnerability
| Release Date: | 28/05/2008 | Severity: | Extremely Critical  |
| SecWatch Advisory: | SWID1021314 | Cause: | Not specified |
| Solution Status: | Unpatched | Impact: | Denial of service Execution of arbitrary code |
| Exploit Status: | None Available | Access Vector: | From remote |
| Affected Software: | Adobe Flash Player 9.x | ||
Description:
A vulnerability in Adobe Flash Player has been reported, which can be exploited by remote users to compromise a user's system.
An unspecified memory corruption error exists when processing a malformed SWF file, which can be exploited to crash an affected browser or execute arbitrary code by e.g. tricking a user to visit a specially crafted web page.
Specific details are not currently available.
Note: This vulnerability is reportedly being exploited in the wild.
Affected:
Adobe Flash Player version 9.0.115.0 and 9.0.124.0. Other versions may also be affected.
Solution:
There was no vendor-supplied solution at the time of entry.
Credits:
Symantec
Free Vulnerability Notification Service
Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.
Related Vulnerabilities and Exploits
09 Apr 08: Adobe Flash Player Multiple Vulnerabilities
19 Dec 07: Adobe Flash Player Multiple Vulnerabilities
11 Jul 07: Adobe Flash Player Multiple Remote Code Execution and Security By..
19 Oct 06: Adobe Flash Player CRLF Injection Vulnerabilities