CVE-2007-6245

Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 allows remote attackers to modify HTTP headers for client requests and conduct HTTP Request Splitting attacks.
References
Link Resource
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.html
http://secunia.com/advisories/28157
http://secunia.com/advisories/28161
http://secunia.com/advisories/28213
http://secunia.com/advisories/28570
http://secunia.com/advisories/30507
http://securitytracker.com/id?1019116
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1
http://www.adobe.com/support/security/bulletins/apsb07-20.html
http://www.gentoo.org/security/en/glsa/glsa-200801-07.xml
http://www.redhat.com/support/errata/RHSA-2007-1126.html
http://www.securityfocus.com/bid/26929
http://www.securityfocus.com/bid/26969
http://www.us-cert.gov/cas/techalerts/TA07-355A.html US Government Resource
http://www.vupen.com/english/advisories/2007/4258
http://www.vupen.com/english/advisories/2008/1724/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/39134
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9546
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.html
http://secunia.com/advisories/28157
http://secunia.com/advisories/28161
http://secunia.com/advisories/28213
http://secunia.com/advisories/28570
http://secunia.com/advisories/30507
http://securitytracker.com/id?1019116
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1
http://www.adobe.com/support/security/bulletins/apsb07-20.html
http://www.gentoo.org/security/en/glsa/glsa-200801-07.xml
http://www.redhat.com/support/errata/RHSA-2007-1126.html
http://www.securityfocus.com/bid/26929
http://www.securityfocus.com/bid/26969
http://www.us-cert.gov/cas/techalerts/TA07-355A.html US Government Resource
http://www.vupen.com/english/advisories/2007/4258
http://www.vupen.com/english/advisories/2008/1724/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/39134
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9546
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:flash_player:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0:*:*:*:*:*:*:*

History

21 Nov 2024, 00:39

Type Values Removed Values Added
References () http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.html - () http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.html -
References () http://secunia.com/advisories/28157 - () http://secunia.com/advisories/28157 -
References () http://secunia.com/advisories/28161 - () http://secunia.com/advisories/28161 -
References () http://secunia.com/advisories/28213 - () http://secunia.com/advisories/28213 -
References () http://secunia.com/advisories/28570 - () http://secunia.com/advisories/28570 -
References () http://secunia.com/advisories/30507 - () http://secunia.com/advisories/30507 -
References () http://securitytracker.com/id?1019116 - () http://securitytracker.com/id?1019116 -
References () http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1 - () http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1 -
References () http://www.adobe.com/support/security/bulletins/apsb07-20.html - () http://www.adobe.com/support/security/bulletins/apsb07-20.html -
References () http://www.gentoo.org/security/en/glsa/glsa-200801-07.xml - () http://www.gentoo.org/security/en/glsa/glsa-200801-07.xml -
References () http://www.redhat.com/support/errata/RHSA-2007-1126.html - () http://www.redhat.com/support/errata/RHSA-2007-1126.html -
References () http://www.securityfocus.com/bid/26929 - () http://www.securityfocus.com/bid/26929 -
References () http://www.securityfocus.com/bid/26969 - () http://www.securityfocus.com/bid/26969 -
References () http://www.us-cert.gov/cas/techalerts/TA07-355A.html - US Government Resource () http://www.us-cert.gov/cas/techalerts/TA07-355A.html - US Government Resource
References () http://www.vupen.com/english/advisories/2007/4258 - () http://www.vupen.com/english/advisories/2007/4258 -
References () http://www.vupen.com/english/advisories/2008/1724/references - () http://www.vupen.com/english/advisories/2008/1724/references -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/39134 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/39134 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9546 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9546 -

Information

Published : 2007-12-20 01:46

Updated : 2024-11-21 00:39


NVD link : CVE-2007-6245

Mitre link : CVE-2007-6245

CVE.ORG link : CVE-2007-6245


JSON object : View

Products Affected

adobe

  • flash_player
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer