Macromedia Flash Array Index Memory Access Vulnerability

Macromedia Flash Array Index Memory Access Vulnerability

The Flash plug-in is vulnerable to an input-validation error that can be reliably exploited to execute arbitrary code. The vulnerability is due to an input-validation error for a critical array index value.

An attacker can exploit this vulnerability to execute arbitrary code. The most likely vector of attack is through a malicious SWF file designed to trigger the vulnerability that has been placed on a website.

Macromedia Flash 6 and 7 are reported affected.