CVE-2007-3456 in Flash Playerinfo

Summary

Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of values that are assumed to be non-negative.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

06/26/2007

Disclosure

07/11/2007

Moderation

VulDB entry created

Entries

VDB-3185 (1)

CPE

ready

CWE

CWE-189 (Confirmed)

Exploit

Download

CVSS

10.0

EPSS

0.63300

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-3456
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3456
CVE Details	https://www.cvedetails.com/cve/CVE-2007-3456/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!