Lucene search
HistoryApr 22, 2003 - 4:00 a.m.
CVE-2002-1467
macromedia
flash plugin
same-domain restriction
file reading
security vulnerability
cve-2002-1467
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.5%
Macromedia Flash Plugin before 6,0,47,0 allows remote attackers to bypass the same-domain restriction and read arbitrary files via (1) an HTTP redirect, (2) a “file://” base in a web document, or (3) a relative URL from a web archive (mht file).
Affected configurations
Node
macromediaflash_playerMatch6.0
ORmacromediaflash_playerMatch6.0.29.0
ORmacromediaflash_playerMatch6.0.40.0
ORmacromediashockwaveMatch8.0
Related
cvelist
cvelist
CVE-2002-1467
2003-03-18 05:00:00
CVE-2007-5275
2007-10-08 23:00:00
nvd
nvd
CVE-2002-1467
2003-04-22 04:00:00
CVE-2007-5275
2007-10-08 23:17:00
nessus
nessus
RHEL 2.1 : netscape (RHSA-2003:027)
2004-07-06 00:00:00
redhat
redhat
(RHSA-2003:027) netscape security update
2003-07-09 00:00:00
ubuntucve
ubuntucve
CVE-2007-5275
2007-10-08 00:00:00
cve
cve
CVE-2007-5275
2007-10-08 23:17:00
prion
prion
Cross site scripting
2007-10-08 23:17:00
openvas
openvas
Adobe Flash Player <= 9.0.115.0 Multiple Vulnerabilities - Linux
2008-09-03 00:00:00
Adobe Flash Player 9.0.115.0 and earlier vulnerability (Linux)
2008-09-03 00:00:00
Adobe Flash Player <= 9.0.115.0 Vulnerability - Windows
2008-09-03 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.5%
Related for CVE-2002-1467