Adobe Flash Professional JPG Processing Integer Overflow
Adobe Flash Professional JPG Processing Integer Overflow Vulnerability
Release Date : 2012-05-09
Criticality level : Highly critical
Impact :System access
Where : From remote
Solution Status : Unpatched
Software: Adobe Flash Professional CS5 11.x
Tielei Wang has discovered a vulnerability in Adobe Flash Professional CS5, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an integer overflow error in Flash.exe when allocating memory to process a JPG object using its image dimensions. This can be exploited to cause a heap-based buffer overflow via a specially crafted FLA file.
Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file.
The vulnerability is reported in version 220.127.116.119 and prior for Windows and Macintosh (confirmed in 18.104.22.1689).
Upgrade to Adobe Flash Professional CS6.
Provided and/or discovered by:
Tielei Wang, Georgia Tech Information Security Center via Secunia.