Vulnerabilities > CVE-2001-0166 - Unspecified vulnerability in Macromedia Shockwave Flash Plugin 6.0/7.0/8.0

CVSS 7.6 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

high complexity

macromedia

NVD

Published: 2001-03-26

Updated: 2017-10-10

Summary

Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of service via malformed tag length specifiers in a SWF file.

Vulnerable Configurations

Part	Description	Count
Application	Macromedia Macromedia Shockwave Flash Plugin - Macromedia Shockwave Flash Plugin 6.0 Macromedia Shockwave Flash Plugin 7.0 Macromedia Shockwave Flash Plugin 8.0	4

References

http://archives.neohapsis.com/archives/bugtraq/2000-12/0491.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5826