[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97147

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-6245

Date: (C)2007-12-19   (M)2017-11-17 


Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 allows remote attackers to modify HTTP headers for client requests and conduct HTTP Request Splitting attacks.

CVSS Score: 5.8Access Vector: NETWORK
Exploit Score: 8.6Access Complexity: MEDIUM
Impact Score: 4.9Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: NONE





Reference:
SECTRACK-1019116
SUNALERT-238305
BID-26929
BID-26969
SECUNIA-28157
SECUNIA-28161
SECUNIA-28213
SECUNIA-28570
SECUNIA-30507
ADV-2007-4258
ADV-2008-1724
GLSA-200801-07
RHSA-2007:1126
SUSE-SA:2007:069
TA07-355A
adobe-unspecified-response-splitting(39134)
http://www.adobe.com/support/security/bulletins/apsb07-20.html

CPE    3
cpe:/a:adobe:flash_player:9
cpe:/a:adobe:flash_player:8
cpe:/a:adobe:flash_player:7
CWE    1
CWE-119
OVAL    6
oval:org.secpod.oval:def:9816
oval:org.secpod.oval:def:9817
oval:org.secpod.oval:def:9797
oval:org.secpod.oval:def:9796
...

© 2013 SecPod Technologies