Vulnerability in N/a
CVE-2007-0071
Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file with a negative Scene Count value, which passes a signed comparison, is used a…
EPSS: 0.847 (99.4th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 1020114 (vdb-entry, x_refsource_SECTRACK)
- 29865 (x_refsource_SECUNIA, third-party-advisory)
- documents.iss.net/whitepapers/IBM_X-Force_WP_final.pdf (x_refsource_MISC)
- 30507 (x_refsource_SECUNIA, third-party-advisory)
- 29386 (vdb-entry, x_refsource_BID)
- TA08-149A (x_refsource_CERT, third-party-advisory)
- www.adobe.com/support/security/bulletins/apsb08-11.html (x_refsource_CONFIRM)
- ADV-2008-1724 (vdb-entry, x_refsource_VUPEN)
- www.matasano.com/log/1032/this-new-vulnerability-dowds-inhuman-flash-exploit/ (x_refsource_MISC)
- blogs.adobe.com/psirt/2008/05/potential_flash_player_issue.html (x_refsource_MISC)