I've downloaded this fixed version, but it seems to be vulnerable to
something I've discovered last week: if you take a .swf and rot13 encode
it (not all of it, so the headers are not messed up), you can crash the
user's browser.
There are quite literally a thousand ways to crash the Macromedia
On Fri, Aug 09, 2002 at 05:44:27PM -0400, Mike Chambers wrote:
The linux and solaris updates will be avaliable later today.
You will be able to download it at:
www.macromedia.com/go/getflashplayer/
I've downloaded this fixed version, but it seems to be vulnerable to
something I've
://www.ComputerBytesMan.com
-Original Message-
From: Mike Chambers [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 09, 2002 5:44 PM
To: 'BUGTRAQ'
Subject: RE: EEYE: Macromedia Shockwave Flash Malformed Header Overflow
The linux and solaris updates will be avaliable later today.
You will be able
Unix version is still vulnerable as Macromedia didnt
updated its Flash plugin for Unix systems.
__
Do You Yahoo!?
HotJobs - Search Thousands of New Jobs
http://www.hotjobs.com
On Thu, Aug 08, 2002 at 05:26:20PM -0700, Marc Maiffret wrote:
Vendor Status:
Macromedia has released a patch for this vulnerability, available at:
http://www.macromedia.com/v1/handlers/index.cfm?ID=23293Method=FullTitle=M