diff options
| author | Simon L. B. Nielsen <simon@FreeBSD.org> | 2006-03-15 07:10:33 +0000 |
|---|---|---|
| committer | Simon L. B. Nielsen <simon@FreeBSD.org> | 2006-03-15 07:10:33 +0000 |
| commit | 4fcab4c05c03c841e042469c350da2b0dd3fcd49 (patch) | |
| tree | d58053c6ed2e566f6dd0e98d283e4d16d5d4de74 /security/vuxml/vuln.xml | |
| parent | Make fetchable (diff) | |
Document linux-flashplugin -- arbitrary code execution vulnerability.
Notes
Notes:
svn path=/head/; revision=157139
Diffstat (limited to 'security/vuxml/vuln.xml')
| -rw-r--r-- | security/vuxml/vuln.xml | 39 |
1 files changed, 39 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 5d9e62bc4ba8..fecfdc73e913 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,45 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="83421018-b3ef-11da-a32d-000c6ec775d9"> + <topic>linux-flashplugin -- arbitrary code execution vulnerability</topic> + <affects> + <package> + <name>linux-flashplugin</name> + <range><lt>7.0r63</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Adobe reports:</p> + <blockquote cite="http://www.macromedia.com/devnet/security/security_zone/apsb06-03.html"> + <p>Critical vulnerabilities have been identified in Flash + Player that could allow an attacker who successfully + exploits these vulnerabilities to take control of the + affected system. A malicious SWF must be loaded in Flash + Player by the user for an attacker to exploit these + vulnerabilities.</p> + <p>Flash Player 8 update (8.0.24.0), and Flash Player 7 + update (7.0.63.0) address security vulnerabilities in + previous versions of Flash Player, which could lead to the + potential execution of arbitrary code. These + vulnerabilities could be accessed through content + delivered from a remote location via the users web + browser, email client, or other applications that include + or reference the Flash Player.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2006-0024</cvename> + <url>http://www.macromedia.com/devnet/security/security_zone/apsb06-03.html</url> + </references> + <dates> + <discovery>2006-03-14</discovery> + <entry>2006-03-15</entry> + </dates> + </vuln> + <vuln vid="6111ecb8-b20d-11da-b2fb-000e0c2e438a"> <topic>nfs -- remote denial of service</topic> <affects> |