Lucene search

[email protected]CVE-2002-0476

HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0476

2002-08-1204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

macromedia

flash player

fscommand

arbitrary files

remote attackers

vulnerability

7.6 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

71.1%

JSON

Standalone Macromedia Flash Player 5.0 allows remote attackers to save arbitrary files and programs via a .SWF file containing the undocumented “save” FSCommand.

CPENameOperatorVersion
macromedia:flash_playermacromedia flash playereq5.0

CPE	Name	Operator	Version
macromedia:flash_player	macromedia flash player	eq	5.0

References

www.iss.net/security_center/static/8584.php

www.macromedia.com/support/flash/ts/documents/fs_save.htm

www.securityfocus.com/archive/1/262990

www.securityfocus.com/bid/4320

7.6 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

71.1%

JSON