CVE-2008-4473 Information

Description

Multiple heap-based buffer overflows in Adobe Flash CS3 Professional on Windows and Flash MX 2004 allow remote attackers to execute arbitrary code via an SWF file containing long control parameters.

Reference

http://secunia.com/advisories/32246 http://security-assessment.com/files/advisories/2008-10-16_Multiple_Flash_Authoring_Heap_Overflows.pdf http://securityreason.com/securityalert/4429 http://securitytracker.com/id?1021060 http://www.adobe.com/support/security/advisories/apsa08-09.html http://www.securityfocus.com/archive/1/497397/100/0/threaded http://www.securityfocus.com/bid/31769 http://www.vupen.com/english/advisories/2008/2837 https://exchange.xforce.ibmcloud.com/vulnerabilities/45914