|
|
|||
| Rule General Information |
|---|
| Release Date: | 2014-05-14 | |
| Rule Name: | FILE-FLASH Adobe Flash Player Invalid Object Reference Code Execution Vulnerability -1 (CVE-2009-0520) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not properly remove references to destroyed objects during Shockwave Flash file processing, which allows remote attackers to execute arbitrary code via a crafted file. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows | |
| Reference: | AdobeSecurityBulletins:apsb09-01 SecurityFocusBID:33880 |
|
| Solutions |
|---|
| Adobe has issued a fix on the official website. For more advisory, please visit http://www.adobe.com/support/security/bulletins/apsb09-01.html |