1 results (0.003 seconds)
CVSS: 10.0EPSS: 9%CPEs: 1EXPL: 0
CVSS: 10.0EPSS: 9%CPEs: 1EXPL: 0CVE-2007-2500
https://notcve.org/view.php?id=CVE-2007-2500
04 May 2007 — server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow. server/parser/sprite_definition.cpp de GNU Gnash (también conocido como GNU Flash Player) 0.7.2 permite a atacantes remotos ejecutar código de su elección mediante un núme... • http://osvdb.org/37273 •