Security Flaw Found in Flash Files

A security hole in the widely used Macromedia Flash file format used with Web browsers can allow an attacker to execute code of their choice on affected systems, according to a new security alert released Friday by eEye Digital Security.

The vulnerability is limited, however, to Flash files edited by hand with a binary editor, meaning that the Flash application will not produce files that contain the vulnerability on its own, according to a separate security alert from Macromedia, which is based in San Francisco.

Browser-Based

The vulnerability is serious because it affects Web browsers, which are trusted by firewalls to receive incoming traffic, and because it affects all versions of Flash used in the Internet Explorer and Netscape Navigator Web browsers running on both Windows and Unix, eEye says.

The flaw comes as the result of a problem in the data header of Flash files which allows an attacker to supply more data to the file decoder than is expected and in turn can eventually lead to code execution, eEye says.

Because the vulnerability is browser-based, it can be exploited in any situation in which a Web browser views a Flash file, such as on Web pages, in e-mail, or newsgroups, eEye writes.

Fixing the Problem

Macromedia has released a new Flash player that addresses the flaw and is available on Macromedia's Web site. More information about the vulnerability is also located at on the site.

EEye, which has found numerous other vulnerabilities in applications like Microsoft's Internet Information Services, discovered another security hole in Flash in May.

More Macromedia bug reports are likely to come, though, as eEye warns in its alert that it had found about 17 other vulnerabilities in Flash.