LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 09-12-2006, 09:17 PM   #1
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Exclamation Adobe Flash Player Multiple Unspecified Vulnerabilities (Highly Critical)


Quote:
Description:
Multiple vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to bypass certain security restrictions or compromise a user's system.

1) Various unspecified input validation errors may allow arbitrary code execution when e.g. visiting a malicious website.

2) An unspecified error can be exploited to bypass the "allowScriptAccess" option.

3) [...]

Solution:
Update to [...] fixed version (see the vendor advisory for details).
Secunia Advisory

NOTE: You can get the latest GNU/Linux version (7.x) here.

Last edited by win32sux; 09-13-2006 at 07:13 AM.
 
Old 09-13-2006, 07:18 AM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Arrow Proof-Of-Concept Has Been Produced

Quote:
Computer Terrorism (UK) can confirm the un-disclosed production of a reliable multi-platform & multi-browser Web based Proof-Of-Concept (PoC). Such an exploit could be used in a web-based attack scenario, where unsuspecting users are lured to a maliciously constructed website.
More info at: Computer Terrorism (UK).
 
Old 09-13-2006, 08:48 AM   #3
unSpawn
Moderator
 
Registered: May 2001
Posts: 26,519
Blog Entries: 51

Rep: Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598Reputation: 2598
Good to know. I was wondering about PoC existence when you posted this yesterday.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Mozilla Firefox Vulns win32sux Linux - Security 263 09-12-2013 03:36 AM
Adobe Flash Player on FC5_64 satimis Fedora 2 07-21-2006 11:47 PM
Flash Player Unspecified Code Execution Vulnerabilities (Highly Critical) win32sux Linux - Security 1 03-14-2006 09:35 PM
Free Suse With Mp3, Java, Macromedia Flash Player, And Adobe R. No more digging Jonnyk429 Suse/Novell 4 02-17-2006 04:54 AM
SANS/FBI Releases the Twenty Most Critical Internet Security Vulnerabilities jeremy Linux - Security 4 10-07-2002 06:37 PM


All times are GMT -5. The time now is 08:09 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration