CVE-2007-3456
Description
Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of values that are assumed to be non-negative.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Integer overflow in Adobe Flash Player 9.0.45.0 and earlier allows remote code execution via crafted FLV or SWF files.
Vulnerability
Integer overflow in Adobe Flash Player versions 9.0.45.0 and earlier [1][2]. The flaw occurs when processing a large length value for a Long string or XML variable type in a crafted FLV or SWF file, due to an input validation error involving a signed comparison of values assumed non-negative [description][2].
Exploitation
An attacker can exploit this by hosting a malicious FLV or SWF file on a website or embedding it in an email. The victim must open the file using a vulnerable Flash Player. No authentication required; user interaction is limited to opening the file [2][3].
Impact
Successful exploitation allows remote arbitrary code execution with the privileges of the user running Flash Player [2][3]. This can lead to full system compromise.
Mitigation
Adobe released Flash Player 9.0.48.0 to fix this issue [1][2][3]. Red Hat, Gentoo, and others provided updated packages. Users should upgrade to the latest version. No workaround exists [3].
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
10cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=9.0.45.0
- cpe:2.3:a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.18d60:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.31:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
- Range: <=9.0.45.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
30- secunia.com/advisories/26027nvdPatchVendor Advisory
- secunia.com/advisories/26057nvdVendor Advisory
- secunia.com/advisories/26118nvdVendor Advisory
- secunia.com/advisories/26357nvdVendor Advisory
- secunia.com/advisories/27643nvdVendor Advisory
- secunia.com/advisories/28068nvdVendor Advisory
- www.adobe.com/support/security/bulletins/apsb07-12.htmlnvdVendor Advisory
- www.vupen.com/english/advisories/2007/2497nvdVendor Advisory
- www.vupen.com/english/advisories/2007/3868nvdVendor Advisory
- www.vupen.com/english/advisories/2007/4190nvdVendor Advisory
- www.kb.cert.org/vuls/id/730785nvdUS Government Resource
- www.us-cert.gov/cas/techalerts/TA07-192A.htmlnvdUS Government Resource
- www.us-cert.gov/cas/techalerts/TA07-319A.htmlnvdUS Government Resource
- docs.info.apple.com/article.htmlnvd
- lists.apple.com/archives/security-announce/2007/Nov/msg00002.htmlnvd
- osvdb.org/38054nvd
- sunsolve.sun.com/search/document.donvd
- sunsolve.sun.com/search/document.donvd
- www.gentoo.org/security/en/glsa/glsa-200708-01.xmlnvd
- www.mindedsecurity.com/labs/advisories/MSA01110707nvd
- www.novell.com/linux/security/advisories/2007_46_flashplayer.htmlnvd
- www.securityfocus.com/archive/1/473655/100/0/threadednvd
- www.securityfocus.com/archive/1/474163/100/200/threadednvd
- www.securityfocus.com/archive/1/474248/30/5760/threadednvd
- www.securityfocus.com/bid/24856nvd
- www.securityfocus.com/bid/26444nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35337nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11493nvd
- rhn.redhat.com/errata/RHSA-2007-0696.htmlnvd
News mentions
0No linked articles in our index yet.