[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] MPSB05-07 Flash Player ActionDefineFunction Memory Corruption test file

To: <full-disclosure@xxxxxxxxxxxxxxxxx>, <vuln-dev@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] MPSB05-07 Flash Player ActionDefineFunction Memory Corruption test file
From: "Karma" <karma@xxxxxxxxxxxxxxxxxx>
Date: Fri, 18 Nov 2005 18:44:23 +1100

Since sec-consult provided hex dumps, I thought I would turn it into a file for 
people who needed to test for vulnerable browsers. Remember to patch different 
plugins for different browsers, eg firefox and IE needs to both be patched 
seperately.

The test file is downloadable from http://www.designfolks.com.au/df.swf
It can be used to check for vulnerable versions of flash player which will 
crash the browser. Non vulnerable versions will simply display a yellow image. 

Original source and credits to www.sec-consult.com/228.html
Vendor Patch 
http://www.macromedia.com/devnet/security/security_zone/mpsb05-07.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Secunia Research: MailEnable Buffer Overflow and Directory Traversal Vulnerabilities
Next by Date: [Full-disclosure] Google Base
Previous by thread: [Full-disclosure] Secunia Research: MailEnable Buffer Overflow and Directory Traversal Vulnerabilities
Next by thread: [Full-disclosure] Google Base
Index(es):
- Date
- Thread