Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Director | Macromedia | 5.0 (including) | 5.0 (including) |
| Flash_player | Macromedia | 4.0_r12 (including) | 4.0_r12 (including) |
| Flash_player | Macromedia | 5.0 (including) | 5.0 (including) |
| Flash_player | Macromedia | 5.0_r50 (including) | 5.0_r50 (including) |
| Flash_player | Macromedia | 6.0 (including) | 6.0 (including) |
| Flash_player | Macromedia | 6.0.29.0 (including) | 6.0.29.0 (including) |
| Flash_player | Macromedia | 6.0.40.0 (including) | 6.0.40.0 (including) |
| Flash_player | Macromedia | 6.0.47.0 (including) | 6.0.47.0 (including) |
| Flash_player | Macromedia | 6.0.65.0 (including) | 6.0.65.0 (including) |
| Flash_player | Macromedia | 6.0.79.0 (including) | 6.0.79.0 (including) |
References
- http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html
- http://www.securityfocus.com/bid/8900
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14013
- http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html
- http://www.securityfocus.com/bid/8900
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14013