Vulnerability Details CVE-2002-1382
Macromedia Flash Player before 6.0.65.0 allows remote attackers to execute arbitrary code via certain malformed data headers in Shockwave Flash file format (SWF) files, a different issue than CAN-2002-0846.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.153
EPSS Ranking 94.2%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=104014220727109&w=2
- http://marc.info/?l=vulnwatch&m=104013370116670
- http://www.macromedia.com/v1/handlers/index.cfm?ID=23569
- http://www.securityfocus.com/bid/6383
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10861
- http://marc.info/?l=bugtraq&m=104014220727109&w=2
- http://marc.info/?l=vulnwatch&m=104013370116670
- http://www.macromedia.com/v1/handlers/index.cfm?ID=23569
- http://www.securityfocus.com/bid/6383
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10861
Products affected by CVE-2002-1382
-
cpe:2.3:a:macromedia:flash_player:4.0_r12
-
cpe:2.3:a:macromedia:flash_player:5.0
-
cpe:2.3:a:macromedia:flash_player:5.0_r50
-
cpe:2.3:a:macromedia:flash_player:6.0
-
cpe:2.3:a:macromedia:flash_player:6.0.29.0
-
cpe:2.3:a:macromedia:flash_player:6.0.40.0
-
cpe:2.3:a:macromedia:flash_player:6.0.47.0