Lucene search

[email protected]CVE-2007-6019

HistoryApr 09, 2008 - 9:05 p.m.

CVE-2007-6019

2008-04-0921:05:00

[email protected]

web.nvd.nist.gov

cve-2007-6019

adobe flash player

remote code execution

swf file

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.278 Low

EPSS

Percentile

96.8%

JSON

Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.

Affected configurations

NVD

Node

adobeairMatch1.0

adobeflashMatchbasic8

adobeflashMatchprofessional8

adobeflashMatchprofessionalcs3

adobeflash_playerRange≤9.0.115.0

adobeflash_playerMatch7.0

adobeflash_playerMatch7.0.1

adobeflash_playerMatch7.0.25

adobeflash_playerMatch7.0.63

adobeflash_playerMatch7.0.69.0

adobeflash_playerMatch7.0.70.0

adobeflash_playerMatch7.0_r67

adobeflash_playerMatch7.1

adobeflash_playerMatch7.1.1

adobeflash_playerMatch7.2

adobeflash_playerMatch8pro

adobeflash_playerMatch8professional

adobeflash_playerMatch8.0

adobeflash_playerMatch8.0basic

adobeflash_playerMatch8.0pro

adobeflash_playerMatch8.0.24.0

adobeflash_playerMatch8.0.34.0

adobeflash_playerMatch8.0.35.0

adobeflash_playerMatch8.0.39.0

adobeflash_playerMatch9.0

adobeflash_playerMatch9.0.16

adobeflash_playerMatch9.0.16windows

adobeflash_playerMatch9.0.18d60

adobeflash_playerMatch9.0.20

adobeflash_playerMatch9.0.20.0

adobeflash_playerMatch9.0.28

adobeflash_playerMatch9.0.28.0

adobeflash_playerMatch9.0.31

adobeflash_playerMatch9.0.31.0

adobeflash_playerMatch9.0.45.0

adobeflash_playerMatch9.0.47.0

adobeflash_playerMatch9.0.48.0

adobeflash_playerMatch9.0.112.0

adobeflash_playerMatch9.0.114.0

adobeflash_playerMatch9.0.124.0

adobeflash_playerMatch9.0.155.0

adobeflexMatch3.0

CPENameOperatorVersion
adobe:airadobe aireq1.0
adobe:flashadobe flasheqbasic
adobe:flashadobe flasheqprofessional
adobe:flash_playeradobe flash playerle9.0.115.0
adobe:flash_playeradobe flash playereq7.0
adobe:flash_playeradobe flash playereq7.0.1
adobe:flash_playeradobe flash playereq7.0.25
adobe:flash_playeradobe flash playereq7.0.63
adobe:flash_playeradobe flash playereq7.0.69.0
adobe:flash_playeradobe flash playereq7.0.70.0

CPE	Name	Operator	Version
adobe:air	adobe air	eq	1.0
adobe:flash	adobe flash	eq	basic
adobe:flash	adobe flash	eq	professional
adobe:flash_player	adobe flash player	le	9.0.115.0
adobe:flash_player	adobe flash player	eq	7.0
adobe:flash_player	adobe flash player	eq	7.0.1
adobe:flash_player	adobe flash player	eq	7.0.25
adobe:flash_player	adobe flash player	eq	7.0.63
adobe:flash_player	adobe flash player	eq	7.0.69.0
adobe:flash_player	adobe flash player	eq	7.0.70.0