A security hole in the widely used Macromedia Shockwave Flash file format used with Web browsers can allow an attacker to execute code of their choice on affected systems, according to a new security alert released Friday by eEye Digital Security.
The vulnerability is limited, however, to Shockwave Flash files edited by hand with a binary editor, meaning that the Flash application will not produce files that contain the vulnerability on its own, according to a separate security alert from Macromedia, which is based in San Francisco, Calif.
The vulnerability is serious because it affects Web browsers, which are trusted by firewalls to receive incoming traffic, and because it affects all versions of Shockwave Flash used in the Internet Explorer and Netscape Navigator Web browsers running on both Windows and Unix, eEye said.
Download: The Updated Flash Player
View: More Information
News source: Infoworld.com
The vulnerability is limited, however, to Shockwave Flash files edited by hand with a binary editor, meaning that the Flash application will not produce files that contain the vulnerability on its own, according to a separate security alert from Macromedia, which is based in San Francisco, Calif.
The vulnerability is serious because it affects Web browsers, which are trusted by firewalls to receive incoming traffic, and because it affects all versions of Shockwave Flash used in the Internet Explorer and Netscape Navigator Web browsers running on both Windows and Unix, eEye said.
Download: The Updated Flash Player View: More Information News source: Infoworld.com
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.