HTTP: Adobe Flash Player DefineFont4 SequenceIndex Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Adobe Flash Player. A successful attack can lead to arbitrary code execution.

Extended Description

Adobe Flash Player is prone to a remote code-execution vulnerability due to memory corruption. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

Affected Products

Xerox freeflow_print_server_(ffps),Red_hat enterprise_linux_as_extras

References

BugTraq: 49084

CVE: CVE-2011-2417

Short Name
HTTP:STC:ADOBE:FLASH-SEQUENCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Adobe CVE-2011-2417 Code DefineFont4 Execution Flash Player Remote SequenceIndex bid:49084
Release Date
08/30/2011
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Red_hat

Google

Adobe

Gentoo

Sun

Hp

Xerox

Avaya

Suse

CVSS Score

10.0

Found a potential security threat?