Red Hat Bugzilla – Bug 476172
CVE-2008-5499 flash-plugin: Linux-specific code execution flaw via crafted SWF file
Last modified: 2018-02-12 11:52:41 EST
A security flaw was discovered in the Adobe Flash Player for Linux 10.0.12.36 and 9.0.151.0 that could allow attacker to run arbitrary code on the user's system when crafted SWF file was opened by a victim.
Public, removing embargo: http://www.adobe.com/support/security/bulletins/apsb08-24.html
This issue was addressed in: Red Hat Enterprise Linux Extras: http://rhn.redhat.com/errata/RHSA-2008-1047.html
Further technical details about this flaw in the Bas Alberts' blog post: http://basonbugs.blogspot.com/2008/12/you-can-only-sit-down-if-you-are-human.html