Page 8 of 42 results (0.006 seconds)

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 1

Macromedia Flash Plugin before 6,0,47,0 allows remote attackers to bypass the same-domain restriction and read arbitrary files via (1) an HTTP redirect, (2) a "file://" base in a web document, or (3) a relative URL from a web archive (mht file). Macromedia Flash Plugin anteriores a 6.0.47 permite a atacantes remotos saltarse las restricciones de mismo dominio y leer ficheros arbitrarios mediante Una redirección HTTP Una base "file://" en un documento web una URL relativa de una archivo web (fichero.mht) • http://online.securityfocus.com/archive/1/286625 http://www.iss.net/security_center/static/9797.php http://www.macromedia.com/v1/handlers/index.cfm?ID=23294 http://www.securityfocus.com/bid/5429 https://access.redhat.com/security/cve/CVE-2002-1467 https://bugzilla.redhat.com/show_bug.cgi?id=1616916 •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

Macromedia Flash Player 6 does not terminate connections when the user leaves the web page, which allows remote attackers to cause a denial of service (bandwidth, resource, and CPU consumption) via the (1) loadMovie or (2) loadSound commands, which continue to execute until the browser is closed. • http://www.kb.cert.org/vuls/id/128491 http://www.macromedia.com/v1/handlers/index.cfm?ID=22796&Method=Full&Title=Macromedia%20Flash%20Player%206%20Streaming%20Issue&Cache=False http://www.securityfocus.com/bid/4567 https://exchange.xforce.ibmcloud.com/vulnerabilities/8925 •

CVSS: 5.0EPSS: 1%CPEs: 7EXPL: 2

Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers. • http://archives.neohapsis.com/archives/bugtraq/2002-08/0088.html http://www.iss.net/security_center/static/9843.php http://www.securityfocus.com/bid/5445 •

CVSS: 7.5EPSS: 3%CPEs: 7EXPL: 0

Macromedia Flash Player before 6.0.65.0 allows remote attackers to execute arbitrary code via certain malformed data headers in Shockwave Flash file format (SWF) files, a different issue than CAN-2002-0846. Macromedia Flash Player anteriores a 6.0.65.0 permite a atacantes remotos ejecutar código arbitrario mediante ciertas cabeceras de datos malformadas en ficheros en formato Shockwave Flash (.SWF), un problema distinto a CAN-2002-0846. • http://marc.info/?l=bugtraq&m=104014220727109&w=2 http://marc.info/?l=vulnwatch&m=104013370116670 http://www.macromedia.com/v1/handlers/index.cfm?ID=23569 http://www.securityfocus.com/bid/6383 https://exchange.xforce.ibmcloud.com/vulnerabilities/10861 •

CVSS: 7.5EPSS: 10%CPEs: 1EXPL: 0

Buffer overflow in Flash OCX for Macromedia Flash 6 revision 23 (6,0,23,0) allows remote attackers to execute arbitrary code via a long movie parameter. • http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0051.html http://marc.info/?l=bugtraq&m=102039374017185&w=2 http://marc.info/?l=vuln-dev&m=102038919414726&w=2 http://www.iss.net/security_center/static/8993.php http://www.macromedia.com/support/flash/ts/documents/buf_ovflow_623.htm http://www.osvdb.org/5177 http://www.securityfocus.com/bid/4664 •