Adobe Flash Player多个缓冲区溢出和内存破坏漏洞

2011-05-13T00:00:00
ID SSV:20557
Type seebug
Reporter Root
Modified 2011-05-13T00:00:00

Description

Bugtraq ID: 47815,47814,47813,47812,47811,47810,47809,47808,47807,47806 CVE ID:CVE-2011-0589, CVE-2011-0618, CVE-2011-0619, CVE-2011-0620, CVE-2011-0621, CVE-2011-0622, CVE-2011-0623, CVE-2011-0624, CVE-2011-0625, CVE-2011-0626, CVE-2011-0627

Adobe Flash Player是一款Flash文件处理程序。 Windows, Macintosh, Linux和Solaris操作系统下的Adobe Flash Player 10.2.159.1和之前版本(Adobe Flash Player 10.2.154.28和用于Chrome用户的早期版本),Android下的Adobe Flash Player 10.2.157.51及早期版本,这些漏洞可导致应用程序崩溃并且允许攻击者完全控制受影响系统。根据报告有恶意软件有尝试利用此这些漏洞的其中一个CVE-2011-0627, 把恶意FLASH(.swf)文件嵌入到Microsoft Word(.doc)或者Microsoft Excel (.xls)文件,并通过Email附件载体进行攻击。但是目前为止,Adobe没有获取成功攻击的样本。 -存在一个设计缺陷可导致信息泄露(CVE-2011-0579)。 -存在一个整数溢出可导致任意代码执行(CVE-2011-0618)。 -存在一个内存破坏漏洞可导致任意代码执行(CVE-2011-0619)。 -存在一个内存破坏漏洞可导致任意代码执行(CVE-2011-0620)。 -存在一个内存破坏漏洞可导致任意代码执行(CVE-2011-0621)。 -存在一个内存破坏漏洞可导致任意代码执行(CVE-2011-0622)。 -存在边界检查错误可导致任意代码执行(CVE-2011-0623)。 -存在边界检查错误可导致任意代码执行(CVE-2011-0624)。 -存在边界检查错误可导致任意代码执行(CVE-2011-0625)。 -存在边界检查错误可导致任意代码执行(CVE-2011-066)。 -存在一个内存破坏漏洞可导致任意代码执行(CVE-2011-0627)

Adobe Flash Player 10.1.53 .64 Adobe Flash Player 10.1.51 .66 Adobe Flash Player 10.0.45 2 Adobe Flash Player 10.0.45 2 Adobe Flash Player 10.0.45 2 Adobe Flash Player 10.0.32 18 Adobe Flash Player 10.0.22 .87 Adobe Flash Player 10.0.15 .3 Adobe Flash Player 10.0.12 .36 Adobe Flash Player 10.0.12 .35 Adobe Flash Player 9.0.262 Adobe Flash Player 9.0.246 0 Adobe Flash Player 9.0.152 .0 Adobe Flash Player 9.0.151 .0 Adobe Flash Player 9.0.124 .0 Adobe Flash Player 9.0.48.0 Adobe Flash Player 9.0.47.0 Adobe Flash Player 9.0.45.0 Adobe Flash Player 9.0.31.0 Adobe Flash Player 9.0.289.0 Adobe Flash Player 9.0.280 Adobe Flash Player 9.0.28.0 Adobe Flash Player 9.0.277.0 Adobe Flash Player 9.0.260.0 Adobe Flash Player 9.0.246.0 Adobe Flash Player 9.0.159.0 Adobe Flash Player 9.0.115.0 Adobe Flash Player 9 Adobe Flash Player 10.2.159.1 Adobe Flash Player 10.2.157.51 Adobe Flash Player 10.2.156.12 Adobe Flash Player 10.2.154.28 Adobe Flash Player 10.2.154.27 Adobe Flash Player 10.2.154.25 Adobe Flash Player 10.2.154.24 Adobe Flash Player 10.2.154.18 Adobe Flash Player 10.2.154.13 Adobe Flash Player 10.2.153.1 Adobe Flash Player 10.2.152.33 Adobe Flash Player 10.2.152.21 Adobe Flash Player 10.1.95.2 Adobe Flash Player 10.1.95.1 Adobe Flash Player 10.1.92.10 Adobe Flash Player 10.1.92.10 Adobe Flash Player 10.1.85.3 Adobe Flash Player 10.1.82.76 Adobe Flash Player 10.1.106.16 Adobe Flash Player 10.1.105.6 Adobe Flash Player 10.1.102.65 Adobe Flash Player 10.1.102.64 Adobe Flash Player 10.1 Release Candida Adobe Flash Player 10.0.42.34 Adobe Flash Player 10.0.32.18 Adobe Flash Player 10 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息: http://www.adobe.com/support/security/bulletins/apsb11-12.html