Back to search
CVE-2007-6019
Published: Apr 9, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
29865
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10160
vdb-entry
signature
x_refsource_OVAL
30507
third-party-advisory
x_refsource_SECUNIA
1019810
vdb-entry
x_refsource_SECTRACK
http://www.adobe.com/support/security/bulletins/apsb08-11.html
x_refsource_CONFIRM
ADV-2008-1724
vdb-entry
x_refsource_VUPEN
adobe-flash-declarefunction2-bo(41717)
vdb-entry
x_refsource_XF
RHSA-2008:0221
vendor-advisory
x_refsource_REDHAT
3805
third-party-advisory
x_refsource_SREASON
TA08-150A
third-party-advisory
x_refsource_CERT
30430
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2008-05-28
vendor-advisory
x_refsource_APPLE
SUSE-SA:2008:022
vendor-advisory
x_refsource_SUSE
20080414 Secunia Research: Adobe Flash Player "Declare Function (V7)" HeapOverflow
mailing-list
x_refsource_BUGTRAQ
29763
third-party-advisory
x_refsource_SECUNIA
238305
vendor-advisory
x_refsource_SUNALERT
20080408 ZDI-08-021: Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability
mailing-list
x_refsource_BUGTRAQ
http://www.zerodayinitiative.com/advisories/ZDI-08-021
x_refsource_MISC
GLSA-200804-21
vendor-advisory
x_refsource_GENTOO
ADV-2008-1697
vdb-entry
x_refsource_VUPEN
28694
vdb-entry
x_refsource_BID
TA08-100A
third-party-advisory
x_refsource_CERT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now