1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Adobe Embedded SWF CVE-2011-0611

Attack: Adobe Embedded SWF CVE-2011-0611

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature will detect attempts to exploit a remote code execution vulnerability in Adobe Flash Player.

Additional Information

Adobe Flash Player is a multimedia application for multiple platforms.

Adobe Flash Player is prone to a remote memory-corruption vulnerability. Specifically, the issue is triggered when handling a malicious '.swf' file embedded in a Microsoft Word '.doc', '.pdf' files etc.

An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

Affected

  • Various Adobe Flash Player version

Response

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube