Oval Definition:
oval:org.mitre.oval:def:1050
Revision Date
:
2013-04-15
Version
:
38
Title
:
Flash Arbitrary Code Execution Vulnerability
Description
:
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote attackers to execute arbitrary commands via a malformed .swf file that results in "multiple improper memory access" errors.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2006-3587
Platform(s)
:
Microsoft Windows XP
Product(s)
:
Flash Player
Definition Synopsis
WinXP SP2,SP3 or WinXP SP1 (64-bit)
Microsoft Windows XP (x86) SP2 is installed
OR
Microsoft Windows XP (x86) SP3 is installed
OR
Microsoft Windows XP SP1 (64-bit) is installed
AND
Flash.ocx exists without upgrades to Flash8 or Flash9
Flash.ocx exists
AND
NOT
the version of Flash8.ocx is greater than or equal 8.0.22.0
AND
NOT
the version of Flash9.ocx is greater than or equal 9.0.16.0
BACK