Adobe Flash Player Code Execution and Information Disclosure Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 8 Nov 2010 4727 Views

RISK: Medium Risk

Medium Risk

Multiple vulnerabilities have been identified in Adobe Flash and Flex, which could be exploited by attackers to disclose sensitive information or compromise a vulnerable system.

These issues are caused by input validation and memory corruption errors when processing malformed Flash content, which could be exploited by attackers to gain knowledge of sensitive information, crash an affected application or execute arbitrary code.

Impact

  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • Adobe Flash Player versions prior to 10.1.102.64
  • Adobe Flash Player versions prior to 9.0.289.0
  • Adobe Flash Professional CS5
  • Adobe Flash CS4 Professional
  • Adobe Flash CS3 Professional
  • Adobe Flex 3
  • Adobe Flex 4

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Google Chrome Memory Corruption and Use-after-free Vulnerabilities

5 Nov 2010 4688 Views

Next

Microsoft Forefront Unified Access Gateway Multiple Vulnerabilities( 10 November 2010 )

10 Nov 2010 4658 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY