CVE-2006-0024
published 2006-03-15CVE-2006-0024: Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and earlier allow remote attackers to execute arbitrary code via a crafted SWF file.
PriorityP428medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
6.60%
93.0th percentile
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and earlier allow remote attackers to execute arbitrary code via a crafted SWF file.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| macromedia | flash_player | <= 8.0.22.0 | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
| macromedia | flash_player | — | — |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-83x7-pg9v-2gcq: Multiple unspecified vulnerabilities in Adobe Flash Player 8
ghsa_unreviewed·2022-05-01
CVE-2006-0024 [MEDIUM] GHSA-83x7-pg9v-2gcq: Multiple unspecified vulnerabilities in Adobe Flash Player 8
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and earlier allow remote attackers to execute arbitrary code via a crafted SWF file.
Red Hat
security flaw
vendor_redhat·2006-03-14·CVSS 5.1
CVE-2006-0024 [MEDIUM] security flaw
security flaw
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and earlier allow remote attackers to execute arbitrary code via a crafted SWF file.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2006-0024 security flaw
bugzilla·2018-08-16·CVSS 5.1
CVE-2006-0024 [MEDIUM] CVE-2006-0024 security flaw
CVE-2006-0024 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and earlier allow remote attackers to execute arbitrary code via a crafted SWF file.
Bugzilla
CVE-2006-0024 flash-plugin flaw
bugzilla·2006-03-15·CVSS 5.1
CVE-2006-0024 [MEDIUM] CVE-2006-0024 flash-plugin flaw
CVE-2006-0024 flash-plugin flaw
Adobe released a bulletin about Flash Player issues caused by malicious SWF
files. I found out about this from a Microsoft advisory released yesterday. It
looks like Microsoft told Adobe about this issue and worked with them in
advance, but Red Hat was not given advance notice of this issue.
http://www.macromedia.com/devnet/security/security_zone/apsb06-03.html
Latest Linux version is 7.0.63.0 posted 20060314
Details of the flaw are vague.
This issue probably affects flash-plugin as distributed with RHEL3 and RHEL4 extras.
Discussion:
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the upda
http://docs.info.apple.com/article.html?artnum=307179http://lists.apple.com/archives/security-announce/2006/May/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlhttp://secunia.com/advisories/19198http://secunia.com/advisories/19218http://secunia.com/advisories/19259http://secunia.com/advisories/19328http://secunia.com/advisories/20045http://secunia.com/advisories/20077http://secunia.com/advisories/28136http://securitytracker.com/id?1015770http://www.gentoo.org/security/en/glsa/glsa-200603-20.xmlhttp://www.kb.cert.org/vuls/id/945060http://www.macromedia.com/devnet/security/security_zone/apsb06-03.htmlhttp://www.novell.com/linux/security/advisories/2006_15_flashplayer.htmlhttp://www.opera.com/docs/changelogs/windows/854/http://www.osvdb.org/23908http://www.redhat.com/support/errata/RHSA-2006-0268.htmlhttp://www.securityfocus.com/bid/17106http://www.securityfocus.com/bid/17951http://www.us-cert.gov/cas/techalerts/TA06-075A.htmlhttp://www.us-cert.gov/cas/techalerts/TA06-129A.htmlhttp://www.us-cert.gov/cas/techalerts/TA06-132A.htmlhttp://www.us-cert.gov/cas/techalerts/TA07-352A.htmlhttp://www.vupen.com/english/advisories/2006/0952http://www.vupen.com/english/advisories/2006/1262http://www.vupen.com/english/advisories/2006/1744http://www.vupen.com/english/advisories/2006/1779http://www.vupen.com/english/advisories/2007/4238https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-020https://exchange.xforce.ibmcloud.com/vulnerabilities/25005https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1894https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1922http://docs.info.apple.com/article.html?artnum=307179http://lists.apple.com/archives/security-announce/2006/May/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlhttp://secunia.com/advisories/19198http://secunia.com/advisories/19218http://secunia.com/advisories/19259http://secunia.com/advisories/19328http://secunia.com/advisories/20045http://secunia.com/advisories/20077http://secunia.com/advisories/28136http://securitytracker.com/id?1015770http://www.gentoo.org/security/en/glsa/glsa-200603-20.xmlhttp://www.kb.cert.org/vuls/id/945060http://www.macromedia.com/devnet/security/security_zone/apsb06-03.htmlhttp://www.novell.com/linux/security/advisories/2006_15_flashplayer.htmlhttp://www.opera.com/docs/changelogs/windows/854/http://www.osvdb.org/23908http://www.redhat.com/support/errata/RHSA-2006-0268.htmlhttp://www.securityfocus.com/bid/17106http://www.securityfocus.com/bid/17951http://www.us-cert.gov/cas/techalerts/TA06-075A.htmlhttp://www.us-cert.gov/cas/techalerts/TA06-129A.htmlhttp://www.us-cert.gov/cas/techalerts/TA06-132A.htmlhttp://www.us-cert.gov/cas/techalerts/TA07-352A.htmlhttp://www.vupen.com/english/advisories/2006/0952http://www.vupen.com/english/advisories/2006/1262http://www.vupen.com/english/advisories/2006/1744http://www.vupen.com/english/advisories/2006/1779http://www.vupen.com/english/advisories/2007/4238https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-020https://exchange.xforce.ibmcloud.com/vulnerabilities/25005https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1894https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1922
2006-03-15
Published