Adobe.Flash.newfunction.Handling.Code.Execution
Description
This indicates an attack attempt against a memory-corruption vulnerability in Adobe products.
The vulnerability is caused by an error in "authplay.dll" while handling malicious SWF content. It allows a remote attacker to execute arbitrary code via sending a crafted PDF document or FLASH file.
Affected Products
Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions for Windows, Macintosh, Linux and Solaris
Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions for Windows, Macintosh and UNIX
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for the suggested workaround:
http://www.adobe.com/support/security/bulletins/apsb10-14.html
http://www.adobe.com/support/security/bulletins/apsb10-15.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |