News Document Title:
====================
Adobe Shockwave Flashplayer v10.3.181.14 - Memory Corruption


Release Date:
=============
2011-06-18


Laboratory Article:
===================
A new critical vulnerability has been identified in Adobe SW Flash Player, which may be exploited by remote attackers to 
execute arbitrary commands. This issue is due to a memory corruption error when embedding a specially crafted .swf file through 
a xul on browser players. Adobe Flash crashes (NPSWF32.dll) due to an null pointer exception, which allows an attacker to 
overwrite & read a pointer in memory.

Affected: Adobe Shockwave Flashplayer 10.3.181.14 - NPSWF32.dll
Credits: Benjamin K.M. - Vulnerability Lab

URL: http://www.vulnerability-lab.com/get_content.php?id=179