Vulnerabilities > CVE-2010-0378 - Use After Free vulnerability in Adobe Flash Player 6.0.79
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Use-after-free vulnerability in Adobe Flash Player 6.0.79, as distributed in Microsoft Windows XP SP2 and SP3, allows remote attackers to execute arbitrary code by unloading a Flash object that is currently being accessed by a script, leading to memory corruption, aka a "Movie Unloading Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
OS | 2 |
Common Weakness Enumeration (CWE)
Oval
accepted | 2015-08-03T04:02:08.213-04:00 | ||||||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||||||
contributors |
| ||||||||||||||||||||||||
definition_extensions |
| ||||||||||||||||||||||||
description | Use-after-free vulnerability in Adobe Flash Player 6.0.79, as distributed in Microsoft Windows XP SP2 and SP3, allows remote attackers to execute arbitrary code by unloading a Flash object that is currently being accessed by a script, leading to memory corruption, aka a "Movie Unloading Vulnerability." | ||||||||||||||||||||||||
family | windows | ||||||||||||||||||||||||
id | oval:org.mitre.oval:def:7580 | ||||||||||||||||||||||||
status | accepted | ||||||||||||||||||||||||
submitted | 2010-05-18T02:23:08 | ||||||||||||||||||||||||
title | Use-after-free vulnerability in Adobe Flash Player 6.0.79 | ||||||||||||||||||||||||
version | 69 |
References
- http://secunia.com/advisories/27105
- http://secunia.com/advisories/27105
- http://secunia.com/secunia_research/2007-77/
- http://secunia.com/secunia_research/2007-77/
- http://securitytracker.com/id?1023435
- http://securitytracker.com/id?1023435
- http://www.kb.cert.org/vuls/id/204889
- http://www.kb.cert.org/vuls/id/204889
- http://www.microsoft.com/technet/security/advisory/979267.mspx
- http://www.microsoft.com/technet/security/advisory/979267.mspx
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7580
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7580