CVE-2007-6242 — MEDIUM (6.8)

Q: What is CVE-2007-6242?

CVE-2007-6242 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Unspecified vulnerability in Adobe Flash Player 9.0.48.0 and earlier might allow remote attackers to execute arbitrary code via unknown vectors, related to "input validation errors."

Q: How severe is CVE-2007-6242?

CVE-2007-6242 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2007-6242?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player.

Vulnerability Description

Unspecified vulnerability in Adobe Flash Player 9.0.48.0 and earlier might allow remote attackers to execute arbitrary code via unknown vectors, related to "input validation errors."

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Adobe	Flash Player	>= 9.0.16.0, <= 9.0.48.0

Related Weaknesses (CWE)

CWE-20

References

http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.htmlMailing ListThird Party Advisory
http://secunia.com/advisories/28157Third Party Advisory
http://secunia.com/advisories/28161Third Party Advisory
http://secunia.com/advisories/28213Third Party Advisory
http://secunia.com/advisories/28570Third Party Advisory
http://secunia.com/advisories/30507Third Party Advisory
http://securitytracker.com/id?1019116Third Party AdvisoryVDB Entry
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1Broken Link
http://www.adobe.com/support/security/bulletins/apsb07-20.htmlVendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200801-07.xmlThird Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-1126.htmlThird Party Advisory
http://www.securityfocus.com/bid/26951Third Party AdvisoryVDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-355A.htmlThird Party AdvisoryUS Government Resource
http://www.vupen.com/english/advisories/2007/4258Third Party Advisory
http://www.vupen.com/english/advisories/2008/1724/referencesThird Party Advisory

FAQ

What is CVE-2007-6242?

CVE-2007-6242 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Unspecified vulnerability in Adobe Flash Player 9.0.48.0 and earlier might allow remote attackers to execute arbitrary code via unknown vectors, related to "input validation errors."

How severe is CVE-2007-6242?

CVE-2007-6242 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-6242?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player.