Описание
Use-after-free vulnerability in Adobe Flash Player 6.0.79, as distributed in Microsoft Windows XP SP2 and SP3, allows remote attackers to execute arbitrary code by unloading a Flash object that is currently being accessed by a script, leading to memory corruption, aka a "Movie Unloading Vulnerability."
Ссылки
- Broken LinkVendor Advisory
- Broken LinkVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken LinkVendor Advisory
- Broken LinkVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Broken LinkPatchVendor Advisory
- Broken Link
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:adobe:flash_player:6.0.79:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.1203
Средний
8.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-416
Связанные уязвимости
CVSS3: 8.8
github
почти 4 года назад
Use-after-free vulnerability in Adobe Flash Player 6.0.79, as distributed in Microsoft Windows XP SP2 and SP3, allows remote attackers to execute arbitrary code by unloading a Flash object that is currently being accessed by a script, leading to memory corruption, aka a "Movie Unloading Vulnerability."
EPSS
Процентиль: 94%
0.1203
Средний
8.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-416