Vulnerability CVE-2003-1017


Published: 2004-01-05   Modified: 2012-02-12

Description:
Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Macromedia -> Director 
Macromedia -> Flash player 

 References:
http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html
http://www.securityfocus.com/bid/8900
https://exchange.xforce.ibmcloud.com/vulnerabilities/14013

Copyright 2024, cxsecurity.com

 

Back to Top