Vulnerability Details : CVE-2007-6242
Unspecified vulnerability in Adobe Flash Player 9.0.48.0 and earlier might allow remote attackers to execute arbitrary code via unknown vectors, related to "input validation errors."
Vulnerability category: Input validationExecute code
Exploit prediction scoring system (EPSS) score for CVE-2007-6242
Probability of exploitation activity in the next 30 days: 92.76%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 99 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-6242
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
CWE ids for CVE-2007-6242
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-6242
-
http://www.redhat.com/support/errata/RHSA-2007-1126.html
Third Party Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9188
Third Party Advisory
-
http://www.adobe.com/support/security/bulletins/apsb07-20.html
Vendor Advisory
-
http://www.securityfocus.com/bid/26951
Third Party Advisory;VDB Entry
-
http://securitytracker.com/id?1019116
Third Party Advisory;VDB Entry
-
http://www.gentoo.org/security/en/glsa/glsa-200801-07.xml
Third Party Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/39128
Third Party Advisory;VDB Entry
-
http://www.us-cert.gov/cas/techalerts/TA07-355A.html
Third Party Advisory;US Government Resource
-
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.html
Mailing List;Third Party Advisory
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1
Broken Link
-
http://www.vupen.com/english/advisories/2008/1724/references
Third Party Advisory
-
http://www.vupen.com/english/advisories/2007/4258
Third Party Advisory
Products affected by CVE-2007-6242
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*