Adobe Flash Player Multiple Vulnerabilities
Description Multiple vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system. 1) An unspecified error can be exploited to execute arbitrary code. NOTE: The vulnerability is currently being actively exploited. 2) An input validation error can be exploited to bypass cross-domain policy file restrictions when certain server encodings are being used. 3) An unspecified error in the "Flash10h.ocx" ActiveX control can be exploited to corrupt memory and potentially execute arbitrary code. 4) An unspecified error can be exploited to disclose potentially sensitive information. Successful exploitation of this vulnerability is limited to the Macintosh platform and the Safari browser. 5) An unspecified error can be exploited to cause a crash and potentially execute arbitrary code. 6) Multiple unspecified errors can be exploited to corrupt memory and potentially execute arbitrary code. 7) An error due to loading libraries in an insecure manner can be exploited to load arbitrary libraries by tricking a user into e.g. opening a file located on a remote WebDAV or SMB share. Successful exploitation of this vulnerability may allow execution of arbitrary code. Solution Update to a fixed version. Further details available in Customer Area Provided and/or discovered by 1) Reported as a 0-day. 3) Xiaopeng Zhang, Fortinet's FortiGuard Labs 7) Simon Raner, ACROS Security The vendor credits: 2) Tokuji Akamine, Symantec Consulting Services Japan 4) Erik Osterholm, Texas A&M University 5) Matthew Scott Bergin of Smash The Stack and Bergin Pen. Testing 6) Will Dormman, CERT/CC. Changelog Further details available in Customer Area Original Advisory Adobe: http://www.adobe.com/support/security/advisories/apsa10-05.html http://www.adobe.com/support/security/bulletins/apsb10-26.html Mila Parkour: http://contagiodump.blogspot.com/2010/10/potential-new-adobe-flash-player-zero.html ACROS Security: http://www.acrossecurity.com/aspr/ASPR-2010-11-05-1-PUB.txt Fortinet's FortiGuard Labs: http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0038.html Other references Further details available in Customer Area Deep Links Links available in Customer Area

Description
Multiple vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.

1) An unspecified error can be exploited to execute arbitrary code.

NOTE: The vulnerability is currently being actively exploited.

2) An input validation error can be exploited to bypass cross-domain policy file restrictions when certain server encodings are being used.

3) An unspecified error in the "Flash10h.ocx" ActiveX control can be exploited to corrupt memory and potentially execute arbitrary code.

4) An unspecified error can be exploited to disclose potentially sensitive information.

Successful exploitation of this vulnerability is limited to the Macintosh platform and the Safari browser.

5) An unspecified error can be exploited to cause a crash and potentially execute arbitrary code.

6) Multiple unspecified errors can be exploited to corrupt memory and potentially execute arbitrary code.

7) An error due to loading libraries in an insecure manner can be exploited to load arbitrary libraries by tricking a user into e.g. opening a file located on a remote WebDAV or SMB share.

Successful exploitation of this vulnerability may allow execution of arbitrary code.

Solution
Update to a fixed version.
Further details available in Customer Area

Provided and/or discovered by
1) Reported as a 0-day.
3) Xiaopeng Zhang, Fortinet's FortiGuard Labs
7) Simon Raner, ACROS Security

The vendor credits:
2) Tokuji Akamine, Symantec Consulting Services Japan
4) Erik Osterholm, Texas A&M University
5) Matthew Scott Bergin of Smash The Stack and Bergin Pen. Testing
6) Will Dormman, CERT/CC.

Changelog
Further details available in Customer Area

Original Advisory
Adobe:
http://www.adobe.com/support/security/advisories/apsa10-05.html
http://www.adobe.com/support/security/bulletins/apsb10-26.html

Mila Parkour:
http://contagiodump.blogspot.com/2010/10/potential-new-adobe-flash-player-zero.html

ACROS Security:
http://www.acrossecurity.com/aspr/ASPR-2010-11-05-1-PUB.txt

Fortinet's FortiGuard Labs:
http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0038.html

Other references
Further details available in Customer Area

Deep Links
Links available in Customer Area

« wróć

SkanNet® - monitoring i bezpieczeństwo w sieci

Wyszukiwarka