Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2007-2500

Опубликовано: 04 мая 2007
Источник: debian
EPSS Средний

Описание

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gnashfixed0.7.2+cvs20070518.1557-1package

EPSS

Процентиль: 94%
0.13265
Средний

Связанные уязвимости

ubuntu логотип

CVE-2007-2500

ubuntu
больше 18 лет назад

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

nvd логотип

CVE-2007-2500

nvd
больше 18 лет назад

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

github логотип

GHSA-c6p3-c4g7-pprg

github
больше 3 лет назад

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

EPSS

Процентиль: 94%
0.13265
Средний