PT-2007-3366 · Adobe+1 · Macromedia Flash Player+1

Publicado

2007-04-13

Atualizado

2017-10-11

CVE-2007-2022

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Adobe Macromedia Flash Player versions 7 and 9

Description The issue allows remote attackers to obtain sensitive information, specifically browser keystrokes, which are leaked to the Flash Player applet when used with certain browsers.

Recommendations For Adobe Macromedia Flash Player version 7, update the browser to a version that is not affected by this issue, such as Opera 9.20 or later, or use an alternative browser. For Adobe Macromedia Flash Player version 9, update the browser to a version that is not affected by this issue, such as Opera 9.20 or later, or use an alternative browser.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2007-2022

RHSA-2007:0494

RHSA-2007_0494

Produtos afetados

Macromedia Flash Player

Red Hat

PT-2007-3366 · Adobe+1 · Macromedia Flash Player+1

CVE-2007-2022

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 37