Vulnerability Details CVE-2002-1625
Macromedia Flash Player 6 does not terminate connections when the user leaves the web page, which allows remote attackers to cause a denial of service (bandwidth, resource, and CPU consumption) via the (1) loadMovie or (2) loadSound commands, which continue to execute until the browser is closed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.078
EPSS Ranking 91.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.kb.cert.org/vuls/id/128491
- http://www.macromedia.com/v1/handlers/index.cfm?ID=22796&Method=Full&Title=Macromedia%20Flash%20Player%206%20Streaming%20Issue&Cache=False
- http://www.securityfocus.com/bid/4567
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8925
- http://www.kb.cert.org/vuls/id/128491
- http://www.macromedia.com/v1/handlers/index.cfm?ID=22796&Method=Full&Title=Macromedia%20Flash%20Player%206%20Streaming%20Issue&Cache=False
- http://www.securityfocus.com/bid/4567
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8925
Products affected by CVE-2002-1625
-
cpe:2.3:a:macromedia:flash_player:6.0