FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

linux-flashplugin -- unspecified remote code execution vulnerability

Affected packages
linux-flashplugin < 9.0r124

Details

VuXML ID 04c6187d-2d8f-11dd-98c9-00163e000016
Discovery 2008-05-27
Entry 2008-05-30

Adobe Product Security Incident Response Team reports:

An exploit appears to be taking advantage of a known vulnerability, reported by Mark Dowd of the ISS X-Force and wushi of team509, that was resolved in Flash Player 9.0.124.0 (CVE-2007-0071). This exploit does NOT appear to include a new, unpatched vulnerability as has been reported elsewhere - customers with Flash Player 9.0.124.0 should not be vulnerable to this exploit.

References

Bugtraq ID 29386
CVE Name CVE-2007-0071
URL http://blogs.adobe.com/psirt/