CVE-2002-1881

Severity

50%

Complexity

99%

Confidentiality

48%

Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers.

Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

Type

Macromedia Flash

First reported 22 years ago

2002-12-31 05:00:00

Last updated 16 years ago

2008-09-05 20:31:00

Affected Software

Macromedia Flash 4.0 r12

4.0_r12

Macromedia Flash 5.0

5.0

Macromedia Flash 5.0 r50

5.0_r50

Macromedia Flash 6.0

6.0

Macromedia Flash 6.0.29.0

6.0.29.0

Macromedia Flash 6.0.40.0

6.0.40.0

Macromedia Flash 6.0.47.0

6.0.47.0

References

20020811 Re: EEYE: Macromedia Shockwave Flash Malformed Header Overflow

Exploit

flash-swf-rot13-dos(9843)

5445

Exploit

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.