Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6246

Overview

Vulnerability Score 4.4 4.4
CVE Id CVE-2007-6246
Last Modified 07 Mar 2011 10:02:15
Published 19 Dec 2007 08:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6246

Summary

Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might allow local users to gain privileges.

Vulnerable Systems

Application

  • Adobe Flash Player 9.0.48.0


References

CERT - TA07-355A

VUPEN - ADV-2008-1724

VUPEN - ADV-2007-4258

BID - 26929

REDHAT - RHSA-2007:1126

GENTOO - GLSA-200801-07

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb07-20.html

SECTRACK - 1019116

SECUNIA - 28570

SECUNIA - 28161

SECUNIA - 28157

XF - adobe-memory-privilege-escalation(39136)

BID - 26965

SUNALERT - 238305

SECUNIA - 30507

SECUNIA - 28213

SUSE - SUSE-SA:2007:069

Related Patches

Adobe APSB07-20 Flash Player 9.0.r115 for IE (Upgrade) (All Languages)

Adobe Flash Player 9.0.115 for Mac OS X (PPC)

Adobe Flash Player 9.0.115 for Mac OS X (Universal)


Last Updated: 27 May 2016 10:46:26