FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-3456

This CVE name corresponds to:

Entered Topic
2007-07-18 linux-flashplugin -- critical vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2007-3456
Phase Assigned(20070626)

Description

Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of values that are assumed to be non-negative.

References

Source Reference
BUGTRAQ 20070713 [MSA01110707] Flash Player/Plugin Video file parsing Remote CodeExecution
BUGTRAQ 20070719 Wii's Internet Channel affected to Flash FLV parser vulnerability
BUGTRAQ 20070720 FLEA-2007-0032-1: flashplayer
MISC http://www.mindedsecurity.com/labs/advisories/MSA01110707
CONFIRM http://www.adobe.com/support/security/bulletins/apsb07-12.html
CONFIRM http://docs.info.apple.com/article.html?artnum=307041
APPLE APPLE-SA-2007-11-14
GENTOO GLSA-200708-01
REDHAT RHSA-2007:0696
SUNALERT 103167
SUNALERT 201506
SUSE SUSE-SA:2007:046
CERT TA07-192A
CERT TA07-319A
CERT-VN VU#730785
BID 24856
BID 26444
OSVDB 38054
OVAL oval:org.mitre.oval:def:11493
VUPEN ADV-2007-2497
VUPEN ADV-2007-3868
VUPEN ADV-2007-4190
SECTRACK 1018359
SECUNIA 26027
SECUNIA 26057
SECUNIA 26118
SECUNIA 26357
SECUNIA 27643
SECUNIA 28068
XF flashplayer-swf-code-execution(35337)