Macromedia Flash Crash • The Register

Skip to content

Whitepapers

Macromedia Flash Crash

Buffer overflow bug fixed

By John Leyden • Get more from this author

Posted in Security, 19th December 2002 12:38 GMT

Free whitepaper – Certify your software integrity with Thawte code signing certificates

A buffer overrun flaw in Macromedia Flash can be used to inject malicious code into target systems.

Potential attackers could try to persuade victims to download maliciously altered versions of Macromedia Flash movies (SWF) but there's still a risk there as crackers are hardly adverse to disguising Trojan code as prOn download or Warez. Unusually, the vulnerability affects users of multiple operating systems (Windows, Unix, Mac) who use Macromedia's application.

However there is a fix, available as a link from Macromedia's minimalist description of the problem here.

A fuller description can be obtained from an eEye advisory. ®

Free whitepaper – Securing your Apache web server with a Thawte digital certificate

Whitepapers

The best practices guide for application security

Download to learn about the mandate, the business case, and the executive action plan to jump start an application security program.

Reducing messaging and web security costs with managed services

In this white paper, learn how security costs can be reduced by utilizing managed security services.

Avoiding 7 common mistakes of IT security compliance

This guide covers seven typical IT security compliance errors and outlines the best practices you can immediately apply to your environment to help your company achieve compliance.

Certify your software integrity with Thawte code signing certificates

This guide will show you how Code Signing Certificates are used to secure code that can be downloaded from the Internet. You will also learn how these certificates operate with different software platforms.

The future of SaaS and IT infrastructure management

This report describes the results of a research project designed to explore the current and planned use of IT Infrastructure Management Solutions in North American companies

Search more Resources

Top stories

Webcast: Jumpstart your Application Security initiatives

Don’t Miss

Feds: Hospital hacker's 'massive' DDoS averted

Arrest foils 'Devil's Day' scheme

Buggy 'smart meters' open door to power-grid botnet

Grid-burrowing worm only the beginning

Microsoft knew of nasty IE bug a year before attacks

Security delayed or security denied?

BlockMaster SafeStick hardware-encrypted USB drive

Review Tough enough?