Multiple unspecified vulnerabilities in FLA file parsing in Adobe Flash CS3 Professional, Flash Professional 8, and Flash Basic 8 on Windows allow user-assisted remote attackers to execute arbitrary code via a crafted .FLA file.
Max CVSS
6.8
EPSS Score
9.00%
Published
2008-03-24
Updated
2017-08-08
Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.
Max CVSS
9.3
EPSS Score
33.71%
Published
2008-04-09
Updated
2018-10-30
2 vulnerabilities found