Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6245

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2007-6245
Last Modified 07 Mar 2011 10:02:15
Published 19 Dec 2007 08:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6245

Summary

Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 allows remote attackers to modify HTTP headers for client requests and conduct HTTP Request Splitting attacks.

Vulnerable Systems

Application

  • Adobe Flash Player 7

  • Adobe Flash Player 8

  • Adobe Flash Player 9


References

CERT - TA07-355A

VUPEN - ADV-2008-1724

VUPEN - ADV-2007-4258

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb07-20.html

XF - adobe-unspecified-response-splitting(39134)

BID - 26969

BID - 26929

REDHAT - RHSA-2007:1126

GENTOO - GLSA-200801-07

SUNALERT - 238305

SECTRACK - 1019116

SECUNIA - 30507

SECUNIA - 28570

SECUNIA - 28213

SECUNIA - 28161

SECUNIA - 28157

SUSE - SUSE-SA:2007:069

Related Patches

Adobe APSB07-20 Flash Player 9.0.r115 for IE (Upgrade) (All Languages)

Adobe Flash Player 9.0.115 for Mac OS X (PPC)

Adobe Flash Player 9.0.115 for Mac OS X (Universal)


Last Updated: 27 May 2016 10:46:26