| Revision Date: | 2010-09-06 | Version: | 5 |
| Title: | Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of values that are assumed to be non-negative. |
| Description: | Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of values that are assumed to be non-negative. |
| Family: | unix | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2007-3456
|
| Platform(s): | Red Hat Enterprise Linux Extras 3
Red Hat Enterprise Linux Extras 4
Red Hat Enterprise Linux Extras 5
| Product(s): | |
| Definition Synopsis |
| AND redhat-release is version 3
AND flash-plugin is earlier than 0:9.0.48.0-1.el3.with.oss
OR
redhat-release is version 4
AND flash-plugin is earlier than 0:9.0.48.0-1.el4
OR
redhat-release is version 5
AND flash-plugin is earlier than 0:9.0.48.0-1.el5
|