Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Macromedia Flash security risk

Macromedia Flash security risk

by Nikola Strahija on November 7th, 2005 Macromedia recently warned users of a critical bug in its Flash Player, which allows attackers to take over a system. The bug was discovered by security firm eEye (along with Sec Consult). It demonstrated successful exploit of the bug in Internet Explorer. Other browsers are are also vulnerable.


The bug is due to missing validation of the frame type identifier read from a SWF file, which could be used to force the player to use attacker-supplied values as function pointers, according to eEye. Exploitation via a malicious SWF file allows an attacker to execute malicious code with the same privileges as the user running Flash Player.

-There was a problem with bounds validation for indexes of certain arrays in Flash Player 7 and earlier, leaving open the possibility that a third party could inject unauthorised code that would have been executed by Flash Player, Macromedia said in its advisory.

The flaw affects all Windows versions of Flash Player 6.x and Flash Player 7.0.19.0 and earlier, but has already been addressed in Flash Player 8 (8.0.22.0), according to eEye. Macromedia recommended upgrading to Flash Player 8 but also released an update to Flash Player 7 fixing the bug.

Secunia gave the bug a highly critical rating.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »