Friday, May 30, 2008 7:50 AM cmosby

REVOKED: Adobe Flash Player Unspecified Vulnerability - Secunia

REVOKED: Adobe Flash Player Unspecified Vulnerability
Advisory Available in German

Secunia Advisory:
SA30404

Release Date:
2008-05-28

Last Update:
2008-05-29

Critical:

Extremely critical

Impact:
System access

Where:
From remote

Solution Status:
Vendor Patch

Software:
Adobe Flash Player 9.x

Description:
A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error. No further information is currently available.

Adobe reports that this is similar to vulnerability #2 in:
SA28083

NOTE: Reportedly, this is currently being actively exploited.

Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, using the Network Software Inspector.

Solution:
Update to the latest version.

Provided and/or discovered by:
Reported as a 0-day by Symantec and SANS ISC.

Changelog:
2008-05-29: Revoked advisory based on additional information provided by Adobe. Updated "Description" and "Solution" sections and added link to SA28083.

Original Advisory:
Adobe:
http://blogs.adobe.com/psirt/2008/05/potential_flash_player_issue.html

SANS ISC:
http://isc.sans.org/diary.html?storyid=4465

Symantec:
http://www.securityfocus.com/bid/29386

Other References:
US-CERT VU#395473:
http://www.kb.cert.org/vuls/id/395473

SA28083:
http://secunia.com/advisories/28083/ Filed under: , , , ,

Comments

No Comments