PT-2006-7424 · Macromedia+1 · Macromedia Flash+1

Shinnai

Published

2006-12-31

Updated

2017-10-19

CVE-2006-6827

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Macromedia Flash 8

Description: The issue allows remote attackers to cause a denial of service, specifically an Internet Explorer 7 crash, by providing a long string in the AllowScriptAccess method of the Flash8b.ocx component.

Recommendations: For Macromedia Flash 8, consider restricting the use of the Flash8b.ocx component until a patch is available, or avoid using the AllowScriptAccess method with long strings to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6827

Affected Products

Internet Explorer

Macromedia Flash

PT-2006-7424 · Macromedia+1 · Macromedia Flash+1

CVE-2006-6827

Related Identifiers

Affected Products

References · 4