New Search

Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file related to an "input validation error" including a signed comparison of values that are assumed to be non-negative.

oval:org.mitre.oval:def:11493

Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file related to an "input validation error" including a signed comparison of values that are assumed to be non-negative.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux Extras 4
  • Red Hat Enterprise Linux Extras 5
  • Red Hat Enterprise Linux Extras 3
Class:
vulnerability
Reference(s):
  • CVE-2007-3456
Product(s):