Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1017

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-1017
Last Modified 07 Mar 2011 09:13:22
Published 05 Jan 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1017

Summary

Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.

Vulnerable Systems

Application

  • Macromedia Director 5.0

  • Macromedia Flash Player 4.0 R12

  • Macromedia Flash Player 5.0

  • Macromedia Flash Player 5.0 R50

  • Macromedia Flash Player 6.0

  • Macromedia Flash Player 6.0.29.0

  • Macromedia Flash Player 6.0.40.0

  • Macromedia Flash Player 6.0.47.0

  • Macromedia Flash Player 6.0.65.0

  • Macromedia Flash Player 6.0.79.0


References

BID - 8900

CONFIRM - http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html

XF - flash-file-predictable-location(14013)


Last Updated: 27 May 2016 10:38:08