Corrupted Flash security code ?

I saw a post in a thread a few days ago regarding Flash exploits/vulnerabilities etc, but i can't remember where i saw it ! Anyway i found this which is relevent, and i would have posted in there if i could have found it. So here it is instead.


Quote

"Almost every browser has plug-ins to handle Adobe's Flash format, and the security researcher said he wonders about the code's security.

"These are plug-ins that are installed by default, and no one has really taken a look at a corrupted Flash generator," he said.

Soon, that may not be true."

http://www.securityfocus.com/news/11387/2


StevieO

 

Flash IS corrupted

StevieO:

Macromedia's Flash has received some scrutiny lately. Secunia documents a problem, originally reported by Microsoft, at:

http://secunia.com/advisories/19218/

Unfortunately, Macromedia (now a part of Adobe) is far from having its act together on this one. Their response, in the recently-released Version 8.0.24.0, was to "hack" the Registry permissions for the Flash control, breaking Flash's operation for Limited Users. Isn't it ironic that security-conscious people get locked out of Flash when updating to a supposedly more secure version? One may follow this soap opera at:

http://www.macromedia.com/cfusion/w...iew.cfm?catid=184&threadid=1130818&forumid=44

CrackMan
XP/IE6/SP2