Vulnerability in Adobe Flash Player
Severity Rating: High
- Adobe Flash Player versions 220.127.116.11 and earlier, 18.104.22.1684 and earlier
A vulnerability has been identified in Adobe Flash Player that could allow an unauthenticated, remote attacker to cause arbitrary code to be executed on the target user's system.
The vulnerability exists due to improper handling of regular expressions by the affected software. An attacker could exploit this vulnerability by using misleading language and persuading a user to open a malicious web page that contains crafted Flash content.
A successful exploitation of this vulnerability could trigger a stack-based buffer overflow condition in the RegExp class for specific search strategies, which the attacker could use to execute arbitrary code in the context of the current process.
Users are advised to apply updates.
More information is available on:
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street