Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-2500

Опубликовано: 04 мая 2007
Источник: ubuntu
Приоритет: medium
CVSS2: 10

Описание

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

РелизСтатусПримечание
dapper

DNE

devel

released

0.7.2+cvs20070518.1557-1
edgy

DNE

feisty

released

0.7.2-1ubuntu0.1
gutsy

released

0.7.2+cvs20070518.1557-1
upstream

needs-triage

Показывать по

Ссылки на источники

10 Critical

CVSS2

Связанные уязвимости

nvd логотип

CVE-2007-2500

nvd
больше 18 лет назад

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

debian логотип

CVE-2007-2500

debian
больше 18 лет назад

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player ...

github логотип

GHSA-c6p3-c4g7-pprg

github
больше 3 лет назад

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

10 Critical

CVSS2