Adobe Flash Player ActionScript ActionJump Remote Code Execution (APSB11-12; CVE-2011-0624)

The Adobe Flash Player is a multimedia and application player that renders Shockwave Flash SWF files. A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to insufficient bounds checking by the Adobe Flash Player. A remote attacker can exploit th...

security flaw

The ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, does not verify a member element's size when performing 1 DefineConstantPool, 2 ActionJump, 3 ActionPush, 4 ActionTry, and unspecified other actions, which allows...