Adobe Flash Player Multimedia File Remote Buffer Overflow Vulnerability
Adobe Flash Player is prone to a remote buffer-overflow vulnerability when handling multimedia files with certain tags.
An attacker may exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.
Adobe Flash Player 220.127.116.11 and earlier versions are affected.
NOTE: This issue has been fixed in all versions of Adobe Flash Player 18.104.22.168.
Initial investigations suggested that the vulnerability had not been patched in the standalone Adobe Flash Player version 22.214.171.124 for Linux and the standalone Adobe Flash Player version 126.96.36.199 with debug capabilities for Microsoft Windows. The observed behavior that led to this initial conclusion has since been confirmed by Adobe as intended by design.