Pardus: Flashplugin System access Vulnerability
Posted by Bill Keys   
A vulnerability has been reported in Adobe Flash Player, which potentially can be exploited by malicious people to compromise a user's system.
------------------------------------------------------------------------
Pardus Linux Security Advisory 2008-86            security@pardus.org.tr
------------------------------------------------------------------------
     Date: 2008-12-23
 Severity: 5
     Type: Remote
------------------------------------------------------------------------

Summary
=======

A  vulnerability has  been  reported  in  Adobe  Flash  Player,  which
potentially can be exploited by malicious people to compromise a user's
system.


Description
===========

The vulnerability is caused due to an unspecified error when processing
SWF files and can potentially be exploited to execute arbitrary code.



Affected packages:

 Pardus 2008:
   flashplugin, all before 10.0.15.3-19-4
 Pardus 2007:
   macromedia-flash, all before 9.0.152.0-11-10


Resolution
==========

There are update(s) for flashplugin, macromedia-flash. You  can  update
them via Package Manager or with a single command from console:

 Pardus 2008:
   pisi up flashplugin

 Pardus 2007:
   pisi up macromedia-flash


References
==========

 * http://www.adobe.com/support/security/bulletins/apsb08-24.html
 * http://secunia.com/Advisories/33221/

------------------------------------------------------------------------

--
Pardus Security Team
http://security.pardus.org.tr


_______________________________________________
Pardus-security mailing list
Pardus-security@pardus.org.tr
http://liste.pardus.org.tr/mailman/listinfo/pardus-security