cbcvebase.
CVE-2007-0071
published 2008-04-09

CVE-2007-0071: Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF…

PriorityP275critical9.3CVSS 2.0
AVNACMAuNCCICAC
ITWVulnCheck KEV
Exploited in the wild
EPSS
92.50%
99.8th percentile
Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file with a negative Scene Count value, which passes a signed comparison, is used as an offset of a NULL pointer, and triggers a buffer overflow.

Affected

2 ranges
VendorProductVersion rangeFixed in
adobeflash_player8.0 – 8.0.39.0
adobeflash_player9.0 – 9.0.115.0

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://www.snort.org/vrt/docs/analysis/flash-cve-2007-0071.html
  • Look for crafted SWF files containing a negative Scene Count value, which is the trigger for the integer overflow leading to buffer overflow exploitation.
  • Malicious SWF files exploiting this CVE were observed circulating in the wild as of 2008-05-27; detections should focus on SWF file parsing of Scene Count fields.
  • ·The vulnerability affects Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier; version 9.0.124.0 was initially reported as affected but was later confirmed to be the patched version.
  • ·Initial 0-day classification by Symantec was incorrect; this was a working implementation of a known vulnerability described by Mark Dowd of IBM X-Force.

CVSS provenance

nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck9.3CRITICAL
vendor_redhat9.3CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.