A vulnerability has been identified in Adobe Flash Player, which could be exploited by attackers to compromise a vulnerable system. This issue is caused by an uninitialized memory access triggered by a specially crafted .SWF file, which could be exploited by attackers to execute arbitrary code. This module creates a Microsoft Office Excel .XLS document containing an embedded .SWF file, and waits for an unsuspecting user to trigger the vulnerability by opening the .XLS file with Microsoft Office Excel. This vulnerability has been found exploited in-the-wild during March 2011.
CVE Link
Exploit Platform
Exploit Type
Product Name