[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Macromedia Flash play vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Macromedia Flash play vulnerability
From: "Vince Horan" <vincehoran@xxxxxxxxx>
Date: Thu, 16 Mar 2006 12:06:29 +0000

I have seen no mention here of a new vulnerability in Macromedia Flash
Player see: 
http://www.macromedia.com/devnet/security/security_zone/apsb06-03.html

Question is, is this really exploitable? Doesn't the Flash player
check for updates and download latest - or is it possible to run a
malicious SWF against old version of the player?

Vince Horan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] Filtering Latest Spam Run (radio.toad.com)
Next by Date: [Full-disclosure] [SECURITY] [DSA 1003-1] New xpvm packages fix insecure temporary file
Previous by thread: [Full-disclosure] [ GLSA 200603-12 ] zoo: Buffer overflow
Next by thread: [Full-disclosure] [SECURITY] [DSA 1003-1] New xpvm packages fix insecure temporary file
Index(es):
- Date
- Thread