CVE-2003-1017
Macromedia Flash Player 6.0.x - Flash Cookie Predictable File Location
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.
El Reproductor de Macromedia Flash en versiones anteriores a 7,0,19,0 almacena un fichero de datos de Flash en una localización predecible, accesible a navegadores web como Internet Explorer y Opera, lo que permite a a atacantes remotos leer ficheros restringidos mediante vulnerabilidades en navegadores web cuya explotación se basa en nombres predecibles.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2003-10-24 First Exploit
- 2003-12-17 CVE Reserved
- 2003-12-17 CVE Published
- 2024-05-27 EPSS Updated
- 2024-08-08 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/14013 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/23298 | 2003-10-24 | |
| http://www.securityfocus.com/bid/8900 | 2024-08-08 |
| URL | Date | SRC |
|---|---|---|
| http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html | 2017-07-11 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Macromedia Search vendor "Macromedia" | Director Search vendor "Macromedia" for product "Director" | 5.0 Search vendor "Macromedia" for product "Director" and version "5.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 4.0_r12 Search vendor "Macromedia" for product "Flash Player" and version "4.0_r12" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 5.0 Search vendor "Macromedia" for product "Flash Player" and version "5.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 5.0_r50 Search vendor "Macromedia" for product "Flash Player" and version "5.0_r50" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 6.0 Search vendor "Macromedia" for product "Flash Player" and version "6.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 6.0.29.0 Search vendor "Macromedia" for product "Flash Player" and version "6.0.29.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 6.0.40.0 Search vendor "Macromedia" for product "Flash Player" and version "6.0.40.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 6.0.47.0 Search vendor "Macromedia" for product "Flash Player" and version "6.0.47.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 6.0.65.0 Search vendor "Macromedia" for product "Flash Player" and version "6.0.65.0" | - |
Affected
| ||||||
| Macromedia Search vendor "Macromedia" | Flash Player Search vendor "Macromedia" for product "Flash Player" | 6.0.79.0 Search vendor "Macromedia" for product "Flash Player" and version "6.0.79.0" | - |
Affected
| ||||||