Mozilla Foundation Security Advisory 2009-35

2009-07-22T00:00:00
ID SECURITYVULNS:DOC:22198
Type securityvulns
Reporter Securityvulns
Modified 2009-07-22T00:00:00

Description

Mozilla Foundation Security Advisory 2009-35

Title: Crash and remote code execution during Flash player unloading Impact: Critical Announced: July 21, 2009 Reporter: Attila Suszter Products: Firefox

Fixed in: Firefox 3.5.1 Firefox 3.0.12 Description

Security researcher Attila Suszter reported that when a page contains a Flash object which presents a slow script dialog, and the page is navigated while the dialog is still visible to the user, the Flash plugin is unloaded resulting in a crash due to a call to the deleted object. This crash could potentially be used by an attacker to run arbitrary code on a victim's computer. References

* https://bugzilla.mozilla.org/show_bug.cgi?id=493601
* CVE-2009-2467