CVE-2007-6019
Last modified
CVE-2007-6019 is a vulnerability of currently unknown severity. Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.. EPSS estimates a 59.77% chance of exploitation in the next 30 days.
Description
Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Adobe | Air | 1.0 | — |
| Adobe | Flash | basic | 8 |
| Adobe | Flash | professional | 8 |
| Adobe | Flash Player | <= 9.0.115.0 | — |
| Adobe | Flash Player | 7.0 | — |
| Adobe | Flash Player | 7.0.1 | — |
| Adobe | Flash Player | 7.0.25 | — |
| Adobe | Flash Player | 7.0.63 | — |
| Adobe | Flash Player | 7.0.69.0 | — |
| Adobe | Flash Player | 7.0.70.0 | — |
| Adobe | Flash Player | 7.0_r67 | — |
| Adobe | Flash Player | 7.1 | — |
| Adobe | Flash Player | 7.1.1 | — |
| Adobe | Flash Player | 7.2 | — |
| Adobe | Flash Player | 8 | — |
| Adobe | Flash Player | 8.0 | — |
| Adobe | Flash Player | 8.0.24.0 | — |
| Adobe | Flash Player | 8.0.34.0 | — |
| Adobe | Flash Player | 8.0.35.0 | — |
| Adobe | Flash Player | 8.0.39.0 | — |
| Adobe | Flash Player | 9.0 | — |
| Adobe | Flash Player | 9.0.16 | — |
| Adobe | Flash Player | 9.0.18d60 | — |
| Adobe | Flash Player | 9.0.20 | — |
| Adobe | Flash Player | 9.0.20.0 | — |
| Adobe | Flash Player | 9.0.28 | — |
| Adobe | Flash Player | 9.0.28.0 | — |
| Adobe | Flash Player | 9.0.31 | — |
| Adobe | Flash Player | 9.0.31.0 | — |
| Adobe | Flash Player | 9.0.45.0 | — |
| Adobe | Flash Player | 9.0.47.0 | — |
| Adobe | Flash Player | 9.0.48.0 | — |
| Adobe | Flash Player | 9.0.112.0 | — |
| Adobe | Flash Player | 9.0.114.0 | — |
| Adobe | Flash Player | 9.0.124.0 | — |
| Adobe | Flash Player | 9.0.155.0 | — |
| Adobe | Flex | 3.0 | — |
References
- http://secunia.com/advisories/29763Vendor Advisory
- http://secunia.com/advisories/29865Vendor Advisory
- http://secunia.com/advisories/30430Vendor Advisory
- http://secunia.com/advisories/30507Vendor Advisory
- http://www.adobe.com/support/security/bulletins/apsb08-11.htmlPatch, Vendor Advisory
- http://www.securityfocus.com/bid/28694Exploit, Patch
- http://www.us-cert.gov/cas/techalerts/TA08-100A.htmlUS Government Resource
- http://www.us-cert.gov/cas/techalerts/TA08-150A.htmlUS Government Resource
- http://secunia.com/advisories/29763Vendor Advisory
- http://secunia.com/advisories/29865Vendor Advisory
- http://secunia.com/advisories/30430Vendor Advisory
- http://secunia.com/advisories/30507Vendor Advisory
- http://www.adobe.com/support/security/bulletins/apsb08-11.htmlPatch, Vendor Advisory
- http://www.securityfocus.com/bid/28694Exploit, Patch
- http://www.us-cert.gov/cas/techalerts/TA08-100A.htmlUS Government Resource
- http://www.us-cert.gov/cas/techalerts/TA08-150A.htmlUS Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-6019?
How severe is CVE-2007-6019?
How do I fix CVE-2007-6019?
Are you affected by CVE-2007-6019?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST