Skip to main content

Microsoft Windows Flash Player Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 13 Jan 2010 5209 Views

RISK: Medium Risk

A vulnerability has been identified in Flash Player, which could be exploited by attackers to compromise a vulnerable system.

The vulnerability is caused due to a use-after-free error in the bundled version of Flash Player when unloading Flash objects while these are still being accessed using script code. This can be exploited to corrupt memory via a specially crafted web page.

Successful exploitation allows execution of arbitrary code.


Impact

  • Remote Code Execution

System / Technologies affected

  • Microsoft Windows XP

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Uninstall the Adobe Flash Player version 6.
  • Install the most current version of Flash Player available from Adobe.


Vulnerability Identifier

  • No CVE information is available

Source


Related Link