Page 7 of 42 results (0.040 seconds)

CVSS: 5.1EPSS: 50%CPEs: 14EXPL: 0

Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and earlier allow remote attackers to execute arbitrary code via a crafted SWF file. • http://docs.info.apple.com/article.html?artnum=307179 http://lists.apple.com/archives/security-announce/2006/May/msg00003.html http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html http://secunia.com/advisories/19198 http://secunia.com/advisories/19218 http://secunia.com/advisories/19259 http://secunia.com/advisories/19328 http://secunia.com/advisories/20045 http://secunia.com/advisories/20077 http://secunia.com/advisories/28136 http://securitytracker.com/id?10 •

CVSS: 7.5EPSS: 88%CPEs: 8EXPL: 3

Macromedia Flash plugin (1) Flash.ocx 7.0.19.0 (Windows) and earlier and (2) libflashplayer.so before 7.0.25.0 (Unix) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via parameters to the ActionDefineFunction ActionScript call in a SWF file, which causes an improper memory access condition, a different vulnerability than CVE-2005-2628. • https://www.exploit-db.com/exploits/1331 http://marc.info/?l=bugtraq&m=113140426614670&w=2 http://secunia.com/advisories/17430 http://secunia.com/advisories/17437 http://secunia.com/advisories/17481 http://secunia.com/advisories/17626 http://secunia.com/advisories/17738 http://securityreason.com/securityalert/149 http://www.macromedia.com/devnet/security/security_zone/mpsb05-07.html http://www.microsoft.com/technet/security/advisory/910550.mspx http://www.sec-consult.com/22 • CWE-20: Improper Input Validation •

CVSS: 5.1EPSS: 93%CPEs: 8EXPL: 0

Macromedia Flash 6 and 7 (Flash.ocx) allows remote attackers to execute arbitrary code via a SWF file with a modified frame type identifier that is used as an out-of-bounds array index to a function pointer. • http://lists.apple.com/archives/security-announce/2006/May/msg00003.html http://secunia.com/advisories/17430 http://secunia.com/advisories/17437 http://secunia.com/advisories/17481 http://secunia.com/advisories/17626 http://secunia.com/advisories/17738 http://secunia.com/advisories/20045 http://secunia.com/advisories/20077 http://securitytracker.com/id?1015156 http://www.gentoo.org/security/en/glsa/glsa-200511-21.xml http://www.kb.cert.org/vuls/id/146284 http://www •

CVSS: 5.0EPSS: 0%CPEs: 10EXPL: 2

Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names. El Reproductor de Macromedia Flash en versiones anteriores a 7,0,19,0 almacena un fichero de datos de Flash en una localización predecible, accesible a navegadores web como Internet Explorer y Opera, lo que permite a a atacantes remotos leer ficheros restringidos mediante vulnerabilidades en navegadores web cuya explotación se basa en nombres predecibles. • https://www.exploit-db.com/exploits/23298 http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html http://www.securityfocus.com/bid/8900 https://exchange.xforce.ibmcloud.com/vulnerabilities/14013 •

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 1

Macromedia Flash Player allows remote attackers to read arbitrary files via XML script in a .swf file that is hosted on a remote SMB share. Macromedia Flash Player permite a atacantes remotos la lectura arbitraria de ficheros mediante una rutina XML en un fichero .swf albergado en una SMB compartida en remoto. • http://archives.neohapsis.com/archives/bugtraq/2002-10/0083.html http://www.iss.net/security_center/static/10297.php http://www.securityfocus.com/bid/5904 •