CVE-2007-6019

Currently unrated

Key Information:

Vendor: Adobe
Status: Flash Player; Air; Flash; Flex
Vendor: CVE Published:; 9 April 2008

Summary

Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.

References

http://secunia.com/advisories/29865

third-party-advisoryx_refsource_SECUNIA

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://secunia.com/advisories/30507

third-party-advisoryx_refsource_SECUNIA

EPSS Score

44% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 9, 2008
Vulnerability Reserved
Nov 19, 2007