Macromedia Flash Player 6 does not terminate connections when the user leaves the web page, which allows remote attackers to cause a denial of service (bandwidth, resource, and CPU consumption) via the (1) loadMovie or (2) loadSound commands, which continue to execute until the browser is closed.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flash_player | Macromedia | 6.0 (including) | 6.0 (including) |
References
- http://www.kb.cert.org/vuls/id/128491
- http://www.macromedia.com/v1/handlers/index.cfm?ID=22796\u0026Method=Full\u0026Title=Macromedia%20Flash%20Player%206%20Streaming%20Issue\u0026Cache=False
- http://www.securityfocus.com/bid/4567
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8925
- http://www.kb.cert.org/vuls/id/128491
- http://www.macromedia.com/v1/handlers/index.cfm?ID=22796\u0026Method=Full\u0026Title=Macromedia%20Flash%20Player%206%20Streaming%20Issue\u0026Cache=False
- http://www.securityfocus.com/bid/4567
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8925