‫ Adobe Flash Player / AIR Two Vulnerabilities

IRCAD2012031820
ID: IRCAD2012031820
Release Date: 2012-03-29
Criticality level: Highly critical
Software:
Adobe AIR 3.x
Adobe Flash Player 11.x
Description:
Two vulnerabilities have been reported in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to compromise a user's system.
1) An error within an ActiveX Control when checking the URL security domain can be exploited to corrupt memory.
NOTE: This vulnerability affects Windows Vista and Windows 7 only.
2) An unspecified error within the NetStream class can be exploited to corrupt memory.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.
The vulnerabilities are reported in the following versions:
* Adobe Flash Player versions 11.1.102.63 and prior for Windows, Macintosh, Linux, and Solaris.
* Adobe Flash Player versions 11.1.111.7 and prior for Android 3.x and 2.x.
* Adobe AIR versions 3.1.0.4880 and prior for Windows, Macintosh, and Android.
Solution
Update to a fixed version.
References:
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 10 فروردین 1391

امتیاز

امتیاز شما
تعداد امتیازها:0