Advisories
From FlashSec
Contents | Articles/Papers/Talks | CVE | Advisories | Adobe Advisories | Specs/Adobe Docs |
[edit] 2009
- 04/21/2009: Mozilla Foundation (report by Gregory Fleischer): Same-origin violations when Adobe Flash loaded via view-source: scheme
- 02/24/2009: iDefense - Adobe Flash Player Invalid Object Reference Vulnerability
[edit] 2008
- 11/21/2008: Riley Hassel (iSEC Partners) Adobe Flash Multiple Vulnerabilities
- 10/16/2008: Paul Craig (security-assessment.com) - Multiple Flash Authoring Heap Overflows - Malformed SWF Files
- 09/19/2008: Matthew Dempsky (Mochimedia): Adobe Flash Player plug-in browser crash
- 07/25/2008: Secunia - RealNetworks RealPlayer SWF Frame Handling Buffer Overflow
- 06/17/2008: IBM - JavaScript Code Flow Manipulation, and a real world example advisory - Adobe Flex 3 Dom-Based XSS
- 04/08/2008: Secunia - Adobe Flash Player "Declare Function (V7)" Heap Overflow
- 04/08/2008: TippingPoint - Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability (Details by Javier Vicente Vallejo)
- 03/19/2008: Fortinet - Adobe Flash CS3 Professional Multiple .FLA Parsing Vulnerabilities
- 12/02/2008: iDefense - Adobe Flash Media Server 2 Memory Corruption Vulnerability
- 12/02/2008: iDefense - Adobe Flash Media Server 2 Multiple Integer Overflow Vulnerabilities
[edit] 2007
- 12/19/2007: Adam Barth and Collin Jackson (Stanford University) - Flash Player ActiveX Control for Internet Explorer
- 12/19/2007: TippingPoint DVLabs - Adobe Flash Player JPG Processing Heap Overflow Vulnerability
- 07/12/2007: Minded Security Labs - Flash Player/Plugin Video file parsing Remote Code Execution
[edit] 2006
- 10/17/2006: Rapid7 - HTTP Header Injection Vulnerabilities in the Flash Player Plugin
- 09/12/2006: Computer Terrorism - Adobe/Macromedia Flash Player Remote Code Execution
- 07/05/2006: Fortinet Security - Vulnerability in Macromedia Flash Player Could Allow Remote Code Execution
- 05/09/2006: Microsoft - Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution
[edit] 2005
- 04/11/2005: eEye - Macromedia Flash Player Improper Memory Access Vulnerability
- 11/07/2005: SEC Consult - Macromedia Flash Player ActionDefineFunction Memory Corruption
- 05/07/2006: Fortinet - Vulnerability in Macromedia Flash Player Could Allow Remote Code Execution
- 05/07/2006: Fortinet - Denial of Service Vulnerability in Macromedia Flash Player
[edit] 2002
- 12/16/2002: eEye - Macromedia Shockwave Flash Malformed Header Overflow #2
- 11/12/2002: eEye - Macromedia ColdFusion/JRun Remote SYSTEM Buffer Overflow
- 08/08/2002: eEye - Macromedia Shockwave Flash Malformed Header Overflow
- 05/02/2002: eEye - Macromedia Flash Activex Buffer overflow
Contents | Articles/Papers/Talks | CVE | Advisories | Adobe Advisories | Specs/Adobe Docs |