CVSS: 9.8EPSS: 24%CPEs: 1EXPL: 1CVE-2007-1403 – Macromedia 10.1.4.20 - 'SwDir.dll' Internet Explorer Stack Overflow Denial of Service
https://notcve.org/view.php?id=CVE-2007-1403
10 Mar 2007 — Multiple stack-based buffer overflows in an ActiveX control in SwDir.dll 10.1.4.20 in Macromedia Shockwave allow remote attackers to cause a denial of service (Internet Explorer 7 crash) and possibly execute arbitrary code via a long (1) BGCOLOR, (2) SRC, (3) AutoStart, (4) Sound, (5) DrawLogo, or (6) DrawProgress property value, different vectors than CVE-2006-6885. Múltiples desbordamientos de búfer basado en pila en un control ActiveX en SwDir.dll 10.1.4.20 en Macromedia Shockwave permite a atacantes rem... • https://www.exploit-db.com/exploits/3421 •
CVSS: 7.5EPSS: 21%CPEs: 1EXPL: 1CVE-2006-6885 – Macromedia Shockwave 10 'SwDir.dll' Internet Explorer 7 - Denial of Service
https://notcve.org/view.php?id=CVE-2006-6885
31 Dec 2006 — An ActiveX control in SwDir.dll in Macromedia Shockwave 10 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long string in the swURL attribute. Un control ActiveX en SwDir.dll en Macromedia Shockwave 10 permite a un atacante remoto provocar denegación de servicio (caida de Internet Explorer 7) a través de una cadena en el atributo swURL. • https://www.exploit-db.com/exploits/3042 •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2002-1467
https://notcve.org/view.php?id=CVE-2002-1467
18 Mar 2003 — Macromedia Flash Plugin before 6,0,47,0 allows remote attackers to bypass the same-domain restriction and read arbitrary files via (1) an HTTP redirect, (2) a "file://" base in a web document, or (3) a relative URL from a web archive (mht file). Macromedia Flash Plugin anteriores a 6.0.47 permite a atacantes remotos saltarse las restricciones de mismo dominio y leer ficheros arbitrarios mediante Una redirección HTTP Una base "file://" en un documento web una URL relativa de una archivo web (fichero.mht) • http://online.securityfocus.com/archive/1/286625 •
CVSS: 9.8EPSS: 14%CPEs: 1EXPL: 0CVE-2002-0846
https://notcve.org/view.php?id=CVE-2002-0846
12 Aug 2002 — The decoder for Macromedia Shockwave Flash allows remote attackers to execute arbitrary code via a malformed SWF header that contains more data than the specified length. • http://marc.info/?l=bugtraq&m=103072708329280&w=2 •
CVSS: 7.6EPSS: 1%CPEs: 1EXPL: 0CVE-2001-0166
https://notcve.org/view.php?id=CVE-2001-0166
26 Mar 2001 — Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of service via malformed tag length specifiers in a SWF file. • http://archives.neohapsis.com/archives/bugtraq/2000-12/0491.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1526
https://notcve.org/view.php?id=CVE-1999-1526
11 Mar 1999 — Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia. • http://www.securityfocus.com/archive/1/12842 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1525
https://notcve.org/view.php?id=CVE-1999-1525
14 Mar 1997 — Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie. • http://marc.info/?l=bugtraq&m=87602167420670&w=2 •