CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 1CVE-2002-1467
https://notcve.org/view.php?id=CVE-2002-1467
Macromedia Flash Plugin before 6,0,47,0 allows remote attackers to bypass the same-domain restriction and read arbitrary files via (1) an HTTP redirect, (2) a "file://" base in a web document, or (3) a relative URL from a web archive (mht file). Macromedia Flash Plugin anteriores a 6.0.47 permite a atacantes remotos saltarse las restricciones de mismo dominio y leer ficheros arbitrarios mediante Una redirección HTTP Una base "file://" en un documento web una URL relativa de una archivo web (fichero.mht) • http://online.securityfocus.com/archive/1/286625 http://www.iss.net/security_center/static/9797.php http://www.macromedia.com/v1/handlers/index.cfm?ID=23294 http://www.securityfocus.com/bid/5429 https://access.redhat.com/security/cve/CVE-2002-1467 https://bugzilla.redhat.com/show_bug.cgi?id=1616916 •
CVSS: 7.5EPSS: 7%CPEs: 1EXPL: 0CVE-2002-0846
https://notcve.org/view.php?id=CVE-2002-0846
The decoder for Macromedia Shockwave Flash allows remote attackers to execute arbitrary code via a malformed SWF header that contains more data than the specified length. • http://marc.info/?l=bugtraq&m=103072708329280&w=2 http://www.iss.net/security_center/static/9798.php http://www.macromedia.com/v1/handlers/index.cfm?ID=23293 http://www.redhat.com/support/errata/RHSA-2003-026.html http://www.redhat.com/support/errata/RHSA-2003-027.html http://www.securityfocus.com/bid/5430 https://access.redhat.com/security/cve/CVE-2002-0846 https://bugzilla.redhat.com/show_bug.cgi?id=1616826 •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0166
https://notcve.org/view.php?id=CVE-2001-0166
Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of service via malformed tag length specifiers in a SWF file. • http://archives.neohapsis.com/archives/bugtraq/2000-12/0491.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5826 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1526
https://notcve.org/view.php?id=CVE-1999-1526
Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia. • http://www.securityfocus.com/archive/1/12842 https://exchange.xforce.ibmcloud.com/vulnerabilities/1931 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1525
https://notcve.org/view.php?id=CVE-1999-1525
Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie. • http://marc.info/?l=bugtraq&m=87602167420670&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/1585 https://exchange.xforce.ibmcloud.com/vulnerabilities/1586 https://exchange.xforce.ibmcloud.com/vulnerabilities/460 •