Adobe Flash Player Malicious DLL Execution Vulnerability
( APSB10-26, CVE-2010-3976 )
Summary
A remote code execution vulnerability that can be leveraged by a malicious DLL file has been reported in Adobe Flash Player. A remote attacker may exploit this vulnerability to take complete control of the affected system.
Details
The Adobe Flash Player is a multimedia and application player that renders Shockwave Flash (SWF) files.
Adobe Flash Player has an untrusted search path vulnerability that can be exploited by convincing a user to download a malicious DLL file with the filename "dwmapi.dll". Subsequent execution of that DLL by Flash Player when it is used to play media content can allow an attacker to gain complete control over the affected system.
Affected Products
This vulnerability exists in:
- Adobe Flash Player 10.1.85.3 and earlier versions for Windows, Macintosh, Linux, and Solaris
- Adobe Flash Player 10.1.95.1 for Android
Solution
Check Point IPS Software Blade provides immediate network protection in the latest IPS Update by detecting and blocking PDF files that contain the printSep JavaScript function. For more information, see CPAI-2010-314.
Originally Published:
Last Updated: 16-Nov-2010