Microsoft Windows Flash Player Memory Corruption Vulnerability

» IDS/IPS Signatures

iPolicy Networks Security Advisory

Microsoft Windows Flash Player Memory Corruption Vulnerability


Date Discovered:	01/21/2010
Severity:	High
Operating Systems Affected:	Microsoft Windows XP SP2 Microsoft Windows XP SP3 Microsoft Windows XP x64 SP2
Application Affected:	Adobe Flash Player 6.0.79
Type:	Remote
Identifiers:	CVE-2010-0378

Synopsis

Microsoft Windows XP is prone to a heap-based memory corruption vulnerability, which could be exploited to execute arbitrary code on the affected system

Recommended Actions

Install the latest version of Adobe Flash Player.

Threat Analysis

Adobe Flash Player 6.0.79 bundled with Microsoft Windows XP contains a memory corruption vulnerability.

The flaw exists due to a use-after-free error in the bundled version of Flash Player when unloading Flash objects while these are still being accessed using script code. Successful exploitation allows remote code execution within the context of the affected application.

A remote attacker could exploit this vulnerability by persuading a victim to view a specially crafted HTML document containing Flash contents, that can lead to memory corruption.

References

http://www.microsoft.com/technet/security/advisory/979267.mspx
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-0378
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0378

Write-up by: Dheeraj Johri