Macromedia: >> Flash Player >> 5.0 Security Vulnerabilities
Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.
CVSS Score
5.0
EPSS Score
0.116
Published
2004-01-05
Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers.
CVSS Score
5.0
EPSS Score
0.054
Published
2002-12-31
Macromedia Flash Player before 6.0.65.0 allows remote attackers to execute arbitrary code via certain malformed data headers in Shockwave Flash file format (SWF) files, a different issue than CAN-2002-0846.
CVSS Score
7.5
EPSS Score
0.153
Published
2002-12-23
Standalone Macromedia Flash Player 5.0 allows remote attackers to save arbitrary files and programs via a .SWF file containing the undocumented "save" FSCommand.
CVSS Score
5.0
EPSS Score
0.01
Published
2002-08-12
Standalone Macromedia Flash Player 5.0 before 5,0,30,2 allows remote attackers to execute arbitrary programs via a .SWF file containing the "exec" FSCommand.
CVSS Score
7.5
EPSS Score
0.015
Published
2002-08-12
Page 4