• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Adobe Flash Player Multiple Security Vulnerabilities

Severity: HIGH

Description:

Adobe Flash Player is a multimedia application for Microsoft Windows, Mozilla, and Apple technologies.

Flash Player is prone to multiple security vulnerabilities:

1. A cross-site scripting vulnerability affects Flash Player's interpretation of HTTP response headers.

2. A vulnerability in the player can aid attackers in executing a DNS-rebinding attack.

3. An HTML-injection vulnerability affects an unspecified ActionScript attribute.

4. A security-bypass vulnerability affects policy file interpretation of a nonroot domain policy.

5. An information-disclosure vulnerability affects the 'jar:' protocol interpretation on Mozilla browsers.

6. An information-disclosure vulnerability affects the Flash Player ActiveX control for Windows.

7. Multiple input-validation vulnerabilities allow arbitrary code to run within the context of the vulnerable application. These issues occur when handling specially malformed 'SWF' files. These issues include:


Out-of-bounds reads errors on member elements in the following Action Record types: DefineConstantPool, ActionJump, ActionPush, ActionTry.
A NULL-pointer dereference because of a failure to validate the contents of a dictionary structure.

Attackers can exploit these issues to obtain sensitive information, steal cookie-based authentication credentials, control how webpages are rendered, execute arbitrary script code in the context of the application, and execute arbitrary code in the context of the application. Other attacks may also be possible.

These issues affect Flash Player 9.0.124.0 and prior versions.

Affected Products:

• Adobe AIR 1.1
• Adobe Flash CS4 Professional
• Adobe Flash Player 10
• Adobe Flash Player 7
• Adobe Flash Player 7.0.69.0
• Adobe Flash Player 7.0.70.0
• Adobe Flash Player 8.0.34.0
• Adobe Flash Player 8.0.35.0
• Adobe Flash Player 9
• Adobe Flash Player 9.0.115.0
• Adobe Flash Player 9.0.124.0
• Adobe Flash Player 9.0.28.0
• Adobe Flash Player 9.0.31.0
• Adobe Flash Player 9.0.45.0
• Adobe Flash Player 9.0.47.0
• Adobe Flash Player 9.0.48.0
• Adobe Flex 3.0
• Apple Mac OS X 10.4.11
• Apple Mac OS X 10.5
• Apple Mac OS X 10.5.1
• Apple Mac OS X 10.5.2
• Apple Mac OS X 10.5.3
• Apple Mac OS X 10.5.4
• Apple Mac OS X 10.5.5
• Apple Mac OS X Server 10.4.11
• Apple Mac OS X Server 10.5
• Apple Mac OS X Server 10.5.1
• Apple Mac OS X Server 10.5.2
• Apple Mac OS X Server 10.5.3
• Apple Mac OS X Server 10.5.4
• Apple Mac OS X Server 10.5.5
• Gentoo Linux
• Nortel Networks Self-Service - CCSS7
• Nortel Networks Self-Service MPS 1000
• Nortel Networks Self-Service Peri Application
• Nortel Networks Self-Service Peri Workstation
• RedHat Enterprise Linux Desktop Supplementary 5 client
• RedHat Enterprise Linux Extras 3
• RedHat Enterprise Linux Extras 4
• RedHat Enterprise Linux Supplementary 5 server
• Sun OpenSolaris build snv_100
• Sun OpenSolaris build snv_101
• Sun OpenSolaris build snv_102
• Sun OpenSolaris build snv_103
• Sun OpenSolaris build snv_85
• Sun OpenSolaris build snv_87
• Sun OpenSolaris build snv_88
• Sun OpenSolaris build snv_89
• Sun OpenSolaris build snv_90
• Sun OpenSolaris build snv_91
• Sun OpenSolaris build snv_92
• Sun OpenSolaris build snv_95
• Sun OpenSolaris build snv_96
• Sun Solaris 10_sparc
• Sun Solaris 10_x86

References:

• Adobe: APSB08-20 Flash Player update available to address security vulnerabilities
• Adobe: APSB08-22 Additional disclosure of security vulnerabilities fixed in Flash Playe
• Adobe: Adobe Flash Homepage
• Avaya: Multiple Security Vulnerabilities in the Flash Player Plugin for Solaris (Sun 24
• Nortel Networks: Nortel Response to Sun Alert 248586 - Multiple Security Vulnerabilities in t
• Red Hat: Red Hat Security Advisory RHSA-2008:0945-8
• Sun: Multiple Security Vulnerabilities in the Flash Player Plugin for Solaris
• iSEC Partners: iSEC Partners Security Advisory - 2008-01-flash

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.