flashplugin

• Author: Miklos Vajna
• Vulnerable: 10.3.181.34-1
• Unaffected: 10.3.183.5-1mores1

Multiple vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to disclose sensitive information and compromise a user’s system.

1. An unspecified error can be exploited to cause a buffer overflow and potentially execute arbitrary code.
2. An unspecified error can be exploited to cause a buffer overflow and potentially execute arbitrary code.
3. An error exists within a certain ActionScript function in the “flash.display” class when parsing certain parameters and can be exploited to corrupt memory and potentially execute arbitrary code.
4. An integer overflow error within a certain ActionScript function can be exploited to corrupt memory and potentially execute arbitrary code.
5. An unspecified error can be exploited to cause a buffer overflow and potentially execute arbitrary code.
6. An integer overflow error when handling the “scroll” method of the ActionScript Bitmap class can be exploited to corrupt memory.
7. An unspecified error can be exploited to disclose certain information from another domain.
8. An unspecified error can be exploited to corrupt memory and potentially execute arbitrary code.
9. An unspecified error can be exploited to cause a buffer overflow and potentially execute arbitrary code.
10. An error within the “Setslot()” method when parsing a certain field from an SWF file can be exploited to cause a buffer overflow and potentially execute arbitrary code.
11. An integer overflow error within a certain ActionScript function can be exploited to corrupt memory and potentially execute arbitrary code.
12. An unspecified error can be exploited to corrupt memory and potentially execute arbitrary code.
13. An error within the “Bitmapdata” class when parsing a certain field from an SWF file can be exploited to corrupt memory and potentially execute arbitrary code.
14. 80 unspecified errors of various types when parsing SWF file content may be exploited to corrupt memory.

• Bug Tracker URL: http://bugs.frugalware.org/task/4545

CVEs:

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2130
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2134
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2135
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2136
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2137
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2138
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2139
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2140
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2414
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2415
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2416
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2417
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2424
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2425