Vulnerability Name:

CVE-2007-6244 (CCN-39130)

Assigned:2007-12-17
Published:2007-12-17
Updated:2018-10-30
Summary:Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player 9.x up to 9.0.48.0 and 8.x up to 8.0.35.0 allow remote attackers to inject arbitrary web script or HTML via (1) a SWF file that uses the asfunction: protocol or (2) the navigateToURL function when used with the Flash Player ActiveX Control in Internet Explorer.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Authentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Athentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
Vulnerability Type:CWE-79
Vulnerability Consequences:Gain Access
References:Source: MISC
Type: UNKNOWN
http://crypto.stanford.edu/advisories/CVE-2007-6244/

Source: MITRE
Type: CNA
CVE-2007-6244

Source: SUSE
Type: UNKNOWN
SUSE-SA:2007:069

Source: CCN
Type: RHSA-2007-1126
Critical: flash-plugin security update

Source: CCN
Type: Full-Disclosure Mailing List, Wed, 19 Dec 2007 16:41:51 -0800
CVE-2007-6244: Adobe Flash Player ActiveX Control Universal Cross-Site Scripting Vulnerability

Source: SECUNIA
Type: UNKNOWN
28157

Source: CCN
Type: SA28161
Adobe Flash Player Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
28161

Source: SECUNIA
Type: UNKNOWN
28213

Source: CCN
Type: SA28517
Adobe Connect Enterprise Server Cross-Site Scripting Vulnerabilities

Source: CCN
Type: SA28519
Adobe Dreamweaver/Contribute "Insert Flash Video" Cross-Site Scripting

Source: SECUNIA
Type: UNKNOWN
28570

Source: SECUNIA
Type: UNKNOWN
30507

Source: CCN
Type: SECTRACK ID: 1019116
Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code, Scan Ports, and Conduct HTTP Request Splitting and Cross-Site Scripting Attacks

Source: SECTRACK
Type: UNKNOWN
1019116

Source: SUNALERT
Type: UNKNOWN
238305

Source: CCN
Type: Sun Alert ID: 238305
Multiple Security Vulnerabilities in Flash Player for Solaris

Source: CCN
Type: ASA-2008-013
flash-plugin security update (RHSA-2007-1126)

Source: CCN
Type: ASA-2008-241
Multiple Security Vulnerabilities in Flash Player for Solaris (Sun 238305)

Source: CCN
Type: NORTEL BULLETIN ID: 2008008954, Rev 1
Nortel Response to Sun Alert 238305 - Multiple Security Vulnerabilities in Flash Player for Solaris 10

Source: CCN
Type: Adobe Product Security Bulletin APSB07-20
Flash Player update available to address security vulnerabilities

Source: CONFIRM
Type: UNKNOWN
http://www.adobe.com/support/security/bulletins/apsb07-20.html

Source: CCN
Type: GLSA-200801-07
Adobe Flash Player: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200801-07

Source: CCN
Type: US-CERT VU#758769
Adobe Flash Player asfunction protocol may enable cross-site scripting

Source: CERT-VN
Type: US Government Resource
VU#758769

Source: REDHAT
Type: UNKNOWN
RHSA-2007:1126

Source: BID
Type: UNKNOWN
26929

Source: CCN
Type: BID-26929
Retired: Adobe Flash Player Multiple Security Vulnerabilities

Source: BID
Type: UNKNOWN
26949

Source: CCN
Type: BID-26949
Adobe Flash Player 'asfunction' Cross Site Scripting Vulnerability

Source: BID
Type: UNKNOWN
26960

Source: CCN
Type: BID-26960
Adobe Flash Player ActiveX Control 'navigateToURL' API Cross Domain Scripting Vulnerability

Source: CCN
Type: TLSA-2008-1
Multiple vulnerabilities exist in flash-player

Source: CERT
Type: US Government Resource
TA07-355A

Source: VUPEN
Type: UNKNOWN
ADV-2007-4258

Source: VUPEN
Type: UNKNOWN
ADV-2008-1724

Source: XF
Type: UNKNOWN
adobe-asfunction-protocol-xss(39130)

Source: XF
Type: UNKNOWN
adobe-asfunction-protocol-xss(39130)

Source: XF
Type: UNKNOWN
adobe-navigatetourl-xss(39131)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10210

Source: SUSE
Type: SUSE-SA:2007:069
flash-player security update

Vulnerable Configuration:Configuration 1:
  • cpe:/a:adobe:flash_player:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:flash_player:9.0:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/a:redhat:rhel_extras:4.5.z:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2007-6244 (CCN-39131)

    Assigned:2007-12-18
    Published:2007-12-18
    Updated:2007-12-18
    Summary:The Adobe Flash Player ActiveX control is vulnerable to cross-site scripting, caused by improper validation of user-supplied input embedded within an SWF file. A remote attacker could exploit this vulnerability using the navigateToURL() function to inject malicious script into a Web page containing an embedded SWF file which would be executed in a victim's Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
    CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): None
    Integrity (I): Low
    Availibility (A): None
    CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
    3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Authentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
    3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Athentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    Vulnerability Consequences:Gain Access
    References:Source: MITRE
    Type: CNA
    CVE-2007-6244

    Source: CCN
    Type: RHSA-2007-1126
    Critical: flash-plugin security update

    Source: CCN
    Type: Full-Disclosure Mailing List, Wed, 19 Dec 2007 16:41:51 -0800
    CVE-2007-6244: Adobe Flash Player ActiveX Control Universal Cross-Site Scripting Vulnerability

    Source: CCN
    Type: SA28161
    Adobe Flash Player Multiple Vulnerabilities

    Source: CCN
    Type: SA28517
    Adobe Connect Enterprise Server Cross-Site Scripting Vulnerabilities

    Source: CCN
    Type: SA28519
    Adobe Dreamweaver/Contribute "Insert Flash Video" Cross-Site Scripting

    Source: CCN
    Type: SECTRACK ID: 1019116
    Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code, Scan Ports, and Conduct HTTP Request Splitting and Cross-Site Scripting Attacks

    Source: CCN
    Type: Sun Alert ID: 238305
    Multiple Security Vulnerabilities in Flash Player for Solaris

    Source: CCN
    Type: ASA-2008-013
    flash-plugin security update (RHSA-2007-1126)

    Source: CCN
    Type: ASA-2008-241
    Multiple Security Vulnerabilities in Flash Player for Solaris (Sun 238305)

    Source: CCN
    Type: NORTEL BULLETIN ID: 2008008954, Rev 1
    Nortel Response to Sun Alert 238305 - Multiple Security Vulnerabilities in Flash Player for Solaris 10

    Source: CCN
    Type: Adobe Product Security Bulletin APSB07-20
    Flash Player update available to address security vulnerabilities

    Source: CCN
    Type: GLSA-200801-07
    Adobe Flash Player: Multiple vulnerabilities

    Source: CCN
    Type: US-CERT VU#758769
    Adobe Flash Player asfunction protocol may enable cross-site scripting

    Source: CCN
    Type: BID-26929
    Retired: Adobe Flash Player Multiple Security Vulnerabilities

    Source: CCN
    Type: BID-26949
    Adobe Flash Player 'asfunction' Cross Site Scripting Vulnerability

    Source: CCN
    Type: BID-26960
    Adobe Flash Player ActiveX Control 'navigateToURL' API Cross Domain Scripting Vulnerability

    Source: CCN
    Type: TLSA-2008-1
    Multiple vulnerabilities exist in flash-player

    Source: XF
    Type: UNKNOWN
    adobe-navigatetourl-xss(39131)

    Source: SUSE
    Type: SUSE-SA:2007:069
    flash-player security update

    Vulnerable Configuration:Configuration RedHat 1:
  • cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*
    • Configuration RedHat 2:
  • cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*
    • Configuration RedHat 3:
  • cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*
    • Configuration RedHat 4:
  • cpe:/a:redhat:rhel_extras:4.5.z:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:adobe:connect_enterprise_server:6:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:contribute_cs3:4.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:contribute:4.1:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:dreamweaver:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:adobe:dreamweaver:9.0:*:*:*:*:*:*:*
  • AND
  • cpe:/a:microsoft:ie:*:*:*:*:*:*:*:*
  • OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10:*:x86:*:*:*:*:*
  • OR cpe:/a:redhat:rhel_extras:3:*:*:*:*:*:*:*
  • OR cpe:/a:redhat:rhel_extras:4:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:fuji:*:*:*:*:*:*:*
  • OR cpe:/a:redhat:rhel_extras:4.5.z:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.2:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:2008.5:*:*:*:*:*:x86:*
  • OR cpe:/o:sun:opensolaris:2008.5:*:*:*:*:*:sparc:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20076244
    V
    		CVE-2007-6244
    2015-11-16
    oval:org.mitre.oval:def:24545
    V
    		Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player 9.x up to 9.0.48.0 and 8.x up to 8.0.35.0 allow remote attackers to inject arbitrary web script or HTML via (1) a SWF file that uses the asfunction: protocol or (2) the navigateToURL function when used with the Flash Player ActiveX Control in Internet Explorer.
    2015-08-03
    oval:org.mitre.oval:def:22648
    P
    		ELSA-2007:1126: flash-plugin security update (Critical)
    2014-05-26
    oval:org.mitre.oval:def:10210
    V
    		Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player 9.x up to 9.0.48.0 and 8.x up to 8.0.35.0 allow remote attackers to inject arbitrary web script or HTML via (1) a SWF file that uses the asfunction: protocol or (2) the navigateToURL function when used with the Flash Player ActiveX Control in Internet Explorer.
    2010-09-06
    oval:com.redhat.rhsa:def:20071126
    P
    		RHSA-2007:1126: flash-plugin security update (Critical)
    2007-12-18
    BACK
    adobe flash player 8.0
    adobe flash player 9.0
    adobe connect enterprise server 6
    adobe contribute cs3 4.1
    adobe contribute 4.1
    adobe dreamweaver 8.0
    adobe dreamweaver 9.0
    microsoft ie *
    gentoo linux *
    suse suse linux 9.0
    novell linux desktop 9
    sun solaris 10
    sun solaris 10
    redhat rhel extras 3
    redhat rhel extras 4
    turbolinux turbolinux fuji
    redhat rhel extras 4.5.z
    novell opensuse 10.2
    novell opensuse 10.3
    sun opensolaris 2008.5
    sun opensolaris 2008.5