Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:ADOBE:SWF-APPLY-FUNC

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Adobe Flash Player ActionScript 3 Apply Function Integer Overflow

Release Date

 2011/02/16

Update Number

 1867

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Adobe Flash Player ActionScript 3 Apply Function Integer Overflow


This signature detects attempts to exploit a known vulnerability in Adobe Flash Player. A successful attack can lead to a integer overflow and arbitrary remote code execution within the context of the client.

Extended Description

Adobe Flash Player is prone to a remote integer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Flash Player versions prior to 10.2.152.21 are affected.

Affected Products

  • Adobe Flash Player 10
  • Adobe Flash Player 10.0.0.584
  • Adobe Flash Player 10.0.12.10
  • Adobe Flash Player 10.0.12 .35
  • Adobe Flash Player 10.0.12 .36
  • Adobe Flash Player 10.0.15 .3
  • Adobe Flash Player 10.0.22.87
  • Adobe Flash Player 10.0.32 18
  • Adobe Flash Player 10.0.32.18
  • Adobe Flash Player 10.0.42.34
  • Adobe Flash Player 10.0.45 2
  • Adobe Flash Player 10.0.45 2
  • Adobe Flash Player 10.0.45.2
  • Adobe Flash Player 10.1.102.64
  • Adobe Flash Player 10.1.102.65
  • Adobe Flash Player 10.1.105.6
  • Adobe Flash Player 10.1.106.16
  • Adobe Flash Player 10.1.51.66
  • Adobe Flash Player 10.1.53.64
  • Adobe Flash Player 10.1.82.76
  • Adobe Flash Player 10.1.85.3
  • Adobe Flash Player 10.1.92.10
  • Adobe Flash Player 10.1.92.10
  • Adobe Flash Player 10.1.95.1
  • Adobe Flash Player 10.1.95.2
  • Adobe Flash Player 10.1 Release Candidate
  • Gentoo Linux
  • Red Hat Desktop Extras 4
  • Red Hat Enterprise Linux AS Extras 4
  • Red Hat Enterprise Linux Desktop Supplementary 6
  • Red Hat Enterprise Linux ES Extras 4
  • Red Hat Enterprise Linux Extras 4
  • Red Hat Enterprise Linux Server Supplementary 6
  • Red Hat Enterprise Linux Supplementary 5.6.Z server
  • Red Hat Enterprise Linux Workstation Supplementary 6
  • Red Hat Enterprise Linux WS Extras 4
  • Sun Solaris 10 Sparc
  • Sun Solaris 10 X86
  • SuSE openSUSE 11.2
  • SuSE openSUSE 11.3
  • SuSE SUSE Linux Enterprise Desktop 10 SP3
  • SuSE SUSE Linux Enterprise Desktop 11 SP1

References

  • BugTraq: 46194
  • CVE: CVE-2011-0558

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out