Vulnerability CVE-2007-6243 - CERT Civis.Net

Vulnerability Name:

CVE-2007-6243 (CCN-39129)

Assigned:

2007-12-05

Published:

2007-12-05

Updated:

2017-09-29

Summary:

Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2007-6243

Source: JVN
Type: UNKNOWN
JVN#45675516

Source: APPLE
Type: UNKNOWN
APPLE-SA-2008-05-28

Source: SUSE
Type: UNKNOWN
SUSE-SA:2007:069

Source: SUSE
Type: UNKNOWN
SUSE-SA:2008:022

Source: SUSE
Type: UNKNOWN
SUSE-SR:2008:025

Source: CCN
Type: RHSA-2007-1126
Critical: flash-plugin security update

Source: CCN
Type: RHSA-2008-0221
Critical: flash-plugin security update

Source: CCN
Type: RHSA-2008-0945
Important: flash-plugin security update

Source: CCN
Type: RHSA-2008-0980
Important: flash-plugin security update

Source: CCN
Type: SA28083
Adobe Flash Player Multiple Vulnerabilities

Source: CCN
Type: SA28161
Adobe Flash Player Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
28161

Source: SECUNIA
Type: Vendor Advisory
28213

Source: SECUNIA
Type: UNKNOWN
28570

Source: SECUNIA
Type: Vendor Advisory
29763

Source: SECUNIA
Type: Vendor Advisory
29865

Source: CCN
Type: SA30430
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
30430

Source: SECUNIA
Type: Vendor Advisory
30507

Source: SECUNIA
Type: Vendor Advisory
32448

Source: SECUNIA
Type: Vendor Advisory
32702

Source: SECUNIA
Type: Vendor Advisory
32759

Source: SECUNIA
Type: Vendor Advisory
33390

Source: CCN
Type: SECTRACK ID: 1019116
Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code, Scan Ports, and Conduct HTTP Request Splitting and Cross-Site Scripting Attacks

Source: SECTRACK
Type: UNKNOWN
1019116

Source: SUNALERT
Type: UNKNOWN
238305

Source: SUNALERT
Type: UNKNOWN
248586

Source: CCN
Type: Sun Alert ID: 238305
Multiple Security Vulnerabilities in Flash Player for Solaris

Source: CCN
Type: Sun Alert ID: 248586
Multiple Security Vulnerabilities in the Flash Player Plugin for Solaris

Source: CCN
Type: Apple Web site
About the security content of Security Update 2008-003 / Mac OS X 10.5.3

Source: CCN
Type: ASA-2008-164
flash-plugin security update (RHSA-2008-0221)

Source: CCN
Type: ASA-2008-241
Multiple Security Vulnerabilities in Flash Player for Solaris (Sun 238305)

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2008-440.htm

Source: CCN
Type: ASA-2008-440
flash-plugin security update (RHSA-2008-0980)

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm

Source: CCN
Type: ASA-2009-020
Multiple Security Vulnerabilities in the Flash Player Plugin for Solaris (Sun 248586)

Source: CCN
Type: NORTEL BULLETIN ID: 2009009312, Rev 1
Nortel Response to Sun Alert 248586 - Multiple Security Vulnerabilities in the Flash Player Plugin for Solaris

Source: CONFIRM
Type: UNKNOWN
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=

Source: CCN
Type: NORTEL BULLETIN ID: 2008008954, Rev 1
Nortel Response to Sun Alert 238305 - Multiple Security Vulnerabilities in Flash Player for Solaris 10

Source: MISC
Type: UNKNOWN
http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html

Source: CCN
Type: Adobe Product Security Bulletin APSB07-20
Flash Player update available to address security vulnerabilities

Source: CONFIRM
Type: Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb07-20.html

Source: CCN
Type: Adobe Product Security Bulletin APSB08-11
Flash Player update available to address security vulnerabilities

Source: CONFIRM
Type: UNKNOWN
http://www.adobe.com/support/security/bulletins/apsb08-11.html

Source: CCN
Type: Adobe Product Security Bulletin APSB08-18
Flash Player update available to address security vulnerabilities

Source: CCN
Type: GLSA-200801-07
Adobe Flash Player: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200801-07

Source: CCN
Type: GLSA-200804-21
Adobe Flash Player: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200804-21

Source: CCN
Type: US-CERT VU#935737
Adobe Flash Player may load arbitrary, malformed cross-domain policy files

Source: CERT-VN
Type: US Government Resource
VU#935737

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0221

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0945

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0980

Source: BID
Type: UNKNOWN
26929

Source: CCN
Type: BID-26929
Retired: Adobe Flash Player Multiple Security Vulnerabilities

Source: BID
Type: UNKNOWN
26966

Source: CCN
Type: BID-26966
Adobe Flash Player Policy File Cross Domain Security Bypass Vulnerability

Source: CCN
Type: TLSA-2008-1
Multiple vulnerabilities exist in flash-player

Source: CERT
Type: US Government Resource
TA07-355A

Source: CERT
Type: US Government Resource
TA08-100A

Source: CERT
Type: US Government Resource
TA08-150A

Source: VUPEN
Type: UNKNOWN
ADV-2007-4258

Source: VUPEN
Type: UNKNOWN
ADV-2008-1697

Source: VUPEN
Type: UNKNOWN
ADV-2008-1724

Source: XF
Type: UNKNOWN
adobe-unspecified-security-bypass(39129)

Source: XF
Type: UNKNOWN
adobe-unspecified-security-bypass(39129)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11069

Source: SUSE
Type: SUSE-SA:2007:069
flash-player security update

Source: SUSE
Type: SUSE-SA:2008:022
Flash Player security problems

Source: SUSE
Type: SUSE-SR:2008:025
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:adobe:flash_player:*:*:*:*:*:*:*:* (Version <= 9.0.48.0)

Configuration RedHat 1:

cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*

Configuration RedHat 3:

cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*

Configuration RedHat 4:

cpe:/a:redhat:rhel_extras:4.5.z:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:adobe:flash_player_for_linux:9.0.115.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.31:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:8.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.18d60:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:7.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*

AND

cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*

OR cpe:/o:sun:solaris:10::sparc:*:*:*:*:*

OR cpe:/o:sun:solaris:10::x86:*:*:*:*:*

OR cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*

OR cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*

OR cpe:/o:turbolinux:turbolinux:fuji:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5:*:*:*:*:*:*:*

OR cpe:/a:redhat:rhel_extras:4.5.z:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:10.2:*:*:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_89::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_89::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_95::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_95::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_88::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_88::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_87::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_86::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_86::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_87::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_100::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_100::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_102::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_102::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_91::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_91::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_90::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_90::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_101::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_101::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_92::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_93::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_94::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_99::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_98::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_97::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_96::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_94::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_93::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_99::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_97::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_98::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_96::x86:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_103::sparc:*:*:*:*:*

OR cpe:/o:sun:opensolaris:build_snv_103::x86:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20076243	V	CVE-2007-6243	2015-11-16
oval:org.mitre.oval:def:24909	V	Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.	2015-08-03
oval:org.mitre.oval:def:22542	P	ELSA-2008:0221: flash-plugin security update (Critical)	2014-05-26
oval:org.mitre.oval:def:22648	P	ELSA-2007:1126: flash-plugin security update (Critical)	2014-05-26
oval:org.mitre.oval:def:22730	P	ELSA-2008:0945: flash-plugin security update (Critical)	2014-05-26
oval:org.mitre.oval:def:11069	V	Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.	2010-09-06
oval:com.redhat.rhsa:def:20080945	P	RHSA-2008:0945: flash-plugin security update (Critical)	2008-11-18
oval:com.redhat.rhsa:def:20080221	P	RHSA-2008:0221: flash-plugin security update (Critical)	2008-04-08
oval:com.redhat.rhsa:def:20071126	P	RHSA-2007:1126: flash-plugin security update (Critical)	2007-12-18