Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-6827 — Flash Player vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

21.6%

top 4.27%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Macromedia Flash Player

Timeline

PublishedDec 31

Latest updateMay 1

Description

Flash8b.ocx in Macromedia Flash 8 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long string in the Flash8b.AllowScriptAccess method.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmacromedia/flash_player4 versions+3

🔴Vulnerability Details

GHSA

GHSA-c4fg-8757-gq75: Flash8b↗2022-05-01

▶

CVEList

CVE-2006-6827: Flash8b↗2007-01-01

▶

💥Exploits & PoCs

Exploit-DB

Macromedia Flash 8 (Flash8b.ocx) Internet Explorer 7 - Denial of Service↗2006-12-29

▶