Security Advisory SA44119 - Adobe Flash Player SharedObject Type Confusion Vulnerability

Secunia

Blog

Secunia Advisory SA44119

Adobe Flash Player SharedObject Type Confusion Vulnerability

Secunia Advisory

SA44119

Release Date

2011-04-12

Last Update

2011-04-16

Popularity

24,203 views

Comments

6 comments

Criticality level

Extremely critical

Impact

System access

Where

From remote

Authentication level

This information is available to Secunia VIM customers

Report reliability

This information is available to Secunia VIM customers

Solution Status

Vendor Patch

3rd party PoC/exploit

Link available in Customer Area

Systems affected

This information is available to Secunia VIM customers

Approve distribution

This information is available to Secunia VIM customers

Remediation status

Secunia CSI, Secunia PSI

Automated scanning

Secunia CSI, Secunia PSI

Software:

Adobe AIR 2.x

Adobe Flash Player 10.x

Secunia CVSS Score

This information is available to Secunia VIM Customers

CVE Reference(s)

CVE-2011-0611 CVSS score available to Secunia VIM customers

Description

A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error when parsing ActionScript that adds a custom function to the prototype of a predefined class. This results in incorrect interpretation of an object (i.e. object type confusion) when calling the custom function, which causes an invalid pointer to be dereferenced.

Successful exploitation allows execution of arbitrary code.

The vulnerability is reported in the following versions:
* Adobe Flash Player 10.2.153.1 and earlier versions for Windows, Macintosh, Linux, and Solaris
* Adobe Flash Player 10.2.154.25 and earlier for Chrome
* Adobe Flash Player 10.2.156.12 and earlier for Android

NOTE: The vulnerability is currently being actively exploited via Office Word documents (.doc) containing malicious Flash content.

Solution
Update to Flash Player 10.2.159.1 and AIR 2.6.19140.
Further details available to Secunia VIM customers

Provided and/or discovered by
Reported as a 0-day.

Additional details provided by Secunia Research.

Changelog
Further details available to Secunia VIM customers

Original Advisory
Adobe:
http://www.adobe.com/support/security/bulletins/apsb11-07.html

contagio:
http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.html

Secunia Research - Adobe Flash Player 0-day Exploit Analysis (CVE-2011-0611):
http://secunia.com/blog/210/

Other references
Further details available to Secunia VIM customers

Technical Analysis
Further details available to Secunia VIM customers

Deep Links
Links available to Secunia VIM customers

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: Adobe Flash Player SharedObject Type Confusion Vulnerability

User

Message

mommy_of_ten

RE: Adobe Flash Player SharedObject Type Confusion Vulnerability

23rd Apr, 2011 21:44

Score: 0
Posts: 1
User Since: 23rd Apr 2011
System Score: N/A
Location: US
Last edited on 23rd Apr, 2011 21:44

would this cause videos and games to not run properly?

--
"Every saint has a past,Every sinner has a future"

Was this reply relevant?

-0

Maurice Joyce

RE: Adobe Flash Player SharedObject Type Confusion Vulnerability

23rd Apr, 2011 22:13

Score: 10510
Posts: 8,072
User Since: 4th Jan 2009
System Score: 100%
Location: UK

Perhaps U are not aware but Secunia prefer users not to ask question on their Vulnerability Information Sub forum.

That said, there is a patch available for this item. Just follow these steps & your question will not apply.

UPDATING STANDALONE ADOBE FLASH

Uninstall Flash using the uninstaller here:

http://kb2.adobe.com/cps/141/tn_14157.html SAVE IT TO DESKTOP

Before using the uninstaller COMPLETELY EXIT (just closing them is not sufficient) all these:

a. All Browsers.
b. Windows Messenger.
c. Incredimail.
d. Adobe Free Reader.
e. PSI unless using Version 2.

1. Download & SAVE these to desktop.
http://fpdownload.adobe.com/get/flashplayer/curren...

& then here if U have any Gecko based browsers.

http://fpdownload.adobe.com/get/flashplayer/curren...

2. The installer will appear on the desk top. THE IMPORTANT BIT - Before agreeing to install check these programmes are completely shut down (use the Task Manager if necessary to COMPLETELY EXIT the running process):
a. All Browsers.
b. Windows Messenger.
c. Incredimail.
d. All Adobe Products.
e. PSI - Unless using version 2

3. The new install will then remove all old files during the update process.
4. Complete a PSI rescan & all should be in order.
5. Delete the Flash installer file from the desktop.

If U want to double check Flash is working & the version installed click here: http://www.adobe.com/software/flash/about/

Update 4 17:41 19/04/2011

--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 10 for Windows 7
16GB RAM

Was this reply relevant?

-0

t5fungus	RE: Adobe Flash Player SharedObject Type Confusion Vulnerability	[+]
This reply has been deleted

maythandar	RE: Adobe Flash Player SharedObject Type Confusion Vulnerability	[+]
This reply has been deleted

caljohn12	RE: Adobe Flash Player SharedObject Type Confusion Vulnerability	[+]
This reply has been deleted

benimcalismam3	RE: Adobe Flash Player SharedObject Type Confusion Vulnerability	[+]
This reply has been deleted

Secunia Advisory SA44119

Adobe Flash Player SharedObject Type Confusion Vulnerability

Do you have additional information related to this advisory?

You must be logged in to post a comment.

Secunia Customer Login

Not a customer already?