The host is installed with Adobe Flash Player 9.x up to 9.0.48.0, Adobe Reader 7.x before 7.1.0 or 8.x and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the applications, which fail to handle a singleton Unicode sequence in a character class. Successful exploitation could allow attackers to execute arbitrary code.