|CVSS SCORE||6.8, (AV:N/AC:M/Au:N/C:P/I:P/A:P)|
The specific flaw exists within MPEG-4 parsing. A specially crafted MP4 file can force the dereference of an uninitialized pointer. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process.
Adobe has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||AbdulAziz Hariri - Trend Micro Zero Day Initiative