CVE-2007-3457

Опубликовано: 11 июл. 2007

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

Описание

Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	released	9.0.48.0.0ubuntu10
edgy	ignored	end of life, was needed
feisty	released	9.0.48.0.0ubuntu1~7.04.1
gutsy	released	9.0.48.0.0ubuntu10
hardy	released	9.0.48.0.0ubuntu10
intrepid	released	9.0.48.0.0ubuntu10
jaunty	released	9.0.48.0.0ubuntu10
karmic	released	9.0.48.0.0ubuntu10
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2007-3457

EPSS

Процентиль: 90%

0.05853

Низкий

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2007-3457

nvd

больше 18 лет назад

Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file.

CVE-2007-3457

debian

больше 18 лет назад

Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP ...

GHSA-f2c3-gw2m-p4r2

github

больше 3 лет назад

Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file.

EPSS

Процентиль: 90%

0.05853

Низкий

4.3 Medium

CVSS2

CVE-2007-3457

Описание

Пакет flashplugin-nonfree

Ссылки на источники

Связанные уязвимости