VULHUB ™

The Macromedia Flash plug-in is vulnerable to an input validation error that may be exploited to execute arbitrary code or carry out a denial of service attack. The vulnerability is due to an input validation error for a critical array index value. An attacker can exploit this vulnerability to execute arbitrary code. The most likely vector of attack is through a malicious SWF file designed to trigger the vulnerability that has been placed on a Web site. Macromedia Flash 6 and 7 are reported affected. It should be noted that this issue similar to the vulnerability described in BID 15332 (Macromedia Flash Array Index Memory Access Vulnerability), however, this issue affects a different function.

The Macromedia Flash plug-in is vulnerable to an input validation error that may be exploited to execute arbitrary code or carry out a denial of service attack. The vulnerability is due to an input validation error for a critical array index value. An attacker can exploit this vulnerability to execute arbitrary code. The most likely vector of attack is through a malicious SWF file designed to trigger the vulnerability that has been placed on a Web site. Macromedia Flash 6 and 7 are reported affected. It should be noted that this issue similar to the vulnerability described in BID 15332 (Macromedia Flash Array Index Memory Access Vulnerability), however, this issue affects a different function.