CVE-2002-1881

2022-10-0316:23:46

mitre

www.cve.org

cve-2002-1881

macromedia flash player

denial of service

remote attackers

swf file

web browser crash

content

malformed

6.7 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.7%

JSON

Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers.

References

archives.neohapsis.com/archives/bugtraq/2002-08/0088.html

www.iss.net/security_center/static/9843.php

www.securityfocus.com/bid/5445