Adobe Flash Player (CVE-2010-2167) Multiple Heap Buffer Overflow Vulnerabilities

Adobe Flash Player and AIR are prone to multiple remote heap-based buffer-overflow vulnerabilities because they fail to properly bounds check user-supplied data.

Attackers can exploit these issues to execute arbitrary code in the context of the application. Failed attacks may cause a denial-of-service condition.

NOTE: These issues were previously covered in BID 40759 (Adobe Flash Player 10.0.45.2 and AIR 1.5.3.9130 Multiple Remote Vulnerabilities) but have been given their own record to better document it.


 

Privacy Statement
Copyright 2010, SecurityFocus