Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
|
|
|
|
|
|
|
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
|
|
|
|
Become a Partner and License Our Database or Notification Service
|
|
|
|
|
|
|
|
|
|
|
|
|
(Apple Issues Fix) Adobe Flash Bugs Let Remote Users Execute Arbitrary Code and Obtain Potentially Sensitive Information
|
|
SecurityTracker Alert ID: 1022900 |
|
SecurityTracker URL: http://securitytracker.com/id/1022900
|
|
CVE Reference:
CVE-2009-1863, CVE-2009-1864, CVE-2009-1865, CVE-2009-1866, CVE-2009-1867, CVE-2009-1868, CVE-2009-1869, CVE-2009-1870
(Links to External Site)
|
Date: Sep 11 2009
|
Impact:
Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 9.0 - 9.0.159.0, 10.0 - 10.0.22.87
|
Description:
Several vulnerabilities were reported in Adobe Flash. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can obtain potentially sensitive information.
A remote user can create specially crafted Flash content or URL that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user.
A privilege escalation flaw can cause code execution [CVE-2009-1863].
A heap overflow can cause code execution [CVE-2009-1864].
A null pointer flaw can cause code execution [CVE-2009-1865].
A stack overflow can cause code execution [CVE-2009-1866].
A specially crafted link or dialog box may allow a remote user to hijack the target user's session [CVE-2009-1867].
A URL parsing heap overflow can cause code execution [CVE-2009-1868].
An integer overflow can cause code execution [CVE-2009-1869].
When the target user saves a SWF file to the local disk, a remote user may be able to obtain potentially sensitive information [CVE-2009-1870].
Adobe AIR is also affected.
akehu of Tencent Security Center, Mike Wroe, iDefense, Chen Chen of Venustech, Joran Benker, Roee Hay of IBM Rational Application Security, and Microsoft Vulnerability Research Program (MSVR) reported these vulnerabilities.
|
Impact:
A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can obtain potentially sensitive information.
|
Solution:
Apple has issued a fix (Mac OS X v10.6.1), available from the Software Update pane in System Preferences, or Apple's Software Downloads web site at:
http://www.apple.com/support/downloads/
For Mac OS X v10.6
The download file is named: MacOSXUpd10.6.1.dmg
Its SHA-1 digest is: 2e0c303e0078a488702172d782cb1b882eef543
For Mac OS X Server v10.6
The download file is named: MacOSXServerUpd10.6.1.dmg
Its SHA-1 digest is: 736474bbfc70244c1ff951621fa484ccdfcaf3c7
The Apple advisory is available at:
http://support.apple.com/kb/HT3864
|
Vendor URL: www.adobe.com/support/security/bulletins/apsb09-10.html (Links to External Site)
|
Cause:
Access control error, Boundary error
|
Underlying OS:
UNIX (OS X)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Thu, 10 Sep 2009 13:46:30 -0700
Subject: APPLE-SA-2009-09-10-1 Mac OS X v10.6.1
|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
APPLE-SA-2009-09-10-1 Mac OS X v10.6.1
Mac OS X v10.6.1 is now available and addresses the following:
Flash Player plug-in
CVE-ID: CVE-2009-1862, CVE-2009-1863, CVE-2009-1864, CVE-2009-1865,
CVE-2009-1866, CVE-2009-1867, CVE-2009-1868, CVE-2009-1869,
CVE-2009-1870
Available for: Mac OS X v10.6, Mac OS X Server v10.6
Impact: Multiple vulnerabilities in Adobe Flash Player plug-in
Description: Multiple issues exist in the Adobe Flash Player plug-
in, the most serious of which may lead to arbitrary code execution
when viewing a maliciously crafted web site. The issues are addressed
by updating the Flash Player plug-in to version 10.0.32.18. Further
information is available via the Adobe web site at
http://www.adobe.com/support/security/bulletins/apsb09-10.html
Mac OS X v10.6.1 may be obtained from the Software Update
pane in System Preferences, or Apple's Software Downloads web site:
http://www.apple.com/support/downloads/
For Mac OS X v10.6
The download file is named: MacOSXUpd10.6.1.dmg
Its SHA-1 digest is: 2e0c303e0078a488702172d782cb1b882eef543
For Mac OS X Server v10.6
The download file is named: MacOSXServerUpd10.6.1.dmg
Its SHA-1 digest is: 736474bbfc70244c1ff951621fa484ccdfcaf3c7
Information will also be posted to the Apple Security Updates
web site: http://support.apple.com/kb/HT1222
This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (Darwin)
iQEcBAEBAgAGBQJKqV+gAAoJEHkodeiKZIkBux8H/3wrRgCPvoFJrSMN4u8SqzPd
jN4HyUwhPFuU/ueL3ZngtVmNjEgkw/+mlP4ARwAcogA2f6F+U4Rx0mEXE07fd/5Z
1Ghw+3P/mf0NNEFuFGBjoLNrUIcTORT0tWIZjo/OFZK07C8YtSfmZDcnXAXSskKh
uuxGZhoXFNA29K65KoPQw7O2Pbdj7s2WSos92tWof4j+NNIq9XsryTzLi/attiwz
R9m5WJ0mUf2Bc7u4o+Ka5FEK7Hp1GtypEoi/fa46iwArAvUKJwe8bWwO9c/Kr2Po
0zJmZ+fwHYq5dtIKbNBD586U44sP7DLal9O6Big0np2CCWcOTjR6cczdYes4UhU=
=su8u
-----END PGP SIGNATURE-----
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Security-announce mailing list (Security-announce@lists.apple.com)
|
|
Go to the Top of This SecurityTracker Archive Page
|
