Overview
Incorrectly formatted sound wave (SWF) files may cause a buffer overflow in the Macromedia Flash plug-in.
Description
If the length fields in an SWF file specify fewer data than are actually present in the file, processing the file may cause a buffer overflow in the Macromedia Flash plug-in. |
Impact
The plug-in or browser may crash. Since this buffer is only read from, this overflow is unlikely to cause execution of malicious code. |
Solution
While Macromedia did not produce a patch to correct this problem, it is possible that recent versions of the plug-in have corrected this problem. |
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
Neal Krawetz published the intial description of this problem.
This document was last modified by Tim Shimeall
Other Information
CVE IDs: | CVE-2001-0166 |
Severity Metric: | 0.49 |
Date Public: | 2000-12-29 |
Date First Published: | 2001-05-17 |
Date Last Updated: | 2001-06-20 14:03 UTC |
Document Revision: | 13 |