Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe flash player vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-1654
Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote malicious users to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigateToURL function to send a SOAP message to a UPnP control point, as demonstr...
Adobe Flash Player
9.3
CVSSv2
CVE-2007-6243
Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote malicious users to conduct cross-domain and cross-site scripting (XSS) atta...
Adobe Flash Player
6.8
CVSSv2
CVE-2007-6242
Unspecified vulnerability in Adobe Flash Player 9.0.48.0 and previous versions might allow remote malicious users to execute arbitrary code via unknown vectors, related to "input validation errors."
Adobe Flash Player
9.3
CVSSv2
CVE-2008-3872
Adobe Flash Player 8.0.39.0 and previous versions, and 9.x up to 9.0.115.0, allows remote malicious users to bypass the allowScriptAccess parameter setting via a crafted SWF file with unspecified "Filter evasion" manipulations.
Adobe Flash Player
5
CVSSv2
CVE-2006-5330
CRLF injection vulnerability in Adobe Flash Player plugin 9.0.16 and previous versions for Windows, 7.0.63 and previous versions for Linux, 7.x prior to 7.0 r67 for Solaris, and prior to 9.0.28.0 for Mac OS X, allows remote malicious users to modify HTTP headers of client request...
Adobe Flash Player
4.3
CVSSv2
CVE-2007-3457
Adobe Flash Player 8.0.34.0 and previous versions insufficiently validates HTTP Referer headers, which might allow remote malicious users to conduct a CSRF attack via a crafted SWF file.
Adobe Flash Player
5
CVSSv2
CVE-2007-4324
ActionScript 3 (AS3) in Adobe Flash Player 9.0.47.0, and other versions and other 9.0.124.0 and previous versions versions, allows remote malicious users to bypass the Security Sandbox Model, obtain sensitive information, and port scan arbitrary hosts via a Flash (SWF) movie that...
Adobe Flash Player
9.3
CVSSv2
CVE-2010-3975
Untrusted search path vulnerability in Adobe Flash Player 9 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse schannel.dll that is located in the same folder as a file that is processed by Flash.
Adobe Flash Player 9.0
2.6
CVSSv2
CVE-2006-3588
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote malicious users to cause a denial of service (browser crash) via a malformed, compressed .swf file, a different issue than CVE-2006-3587.
Adobe Flash Player 8.0.24.0
5.1
CVSSv2
CVE-2006-3587
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote malicious users to execute arbitrary commands via a malformed .swf file that results in "multiple improper memory access" errors.
Adobe Flash Player 8.0.24.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »